aboutsummaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authorGravatar Vitaly Takmazov2019-02-19 16:09:06 +0300
committerGravatar Vitaly Takmazov2019-02-19 16:09:06 +0300
commit7f937bdffea9b0219f4fce079ccbad8d233a03b9 (patch)
tree42881dad9ecc2a4fef4940a8c6aac9935a0f1a0a
parentfc7ad5f5849e28c0f0d4d5eed695236d0576b4b3 (diff)
allow avatar endpoint for anonymous
-rw-r--r--src/main/java/com/juick/server/configuration/SecurityConfig.java2
1 files changed, 1 insertions, 1 deletions
diff --git a/src/main/java/com/juick/server/configuration/SecurityConfig.java b/src/main/java/com/juick/server/configuration/SecurityConfig.java
index d2d3ab13..c5cb4a55 100644
--- a/src/main/java/com/juick/server/configuration/SecurityConfig.java
+++ b/src/main/java/com/juick/server/configuration/SecurityConfig.java
@@ -116,7 +116,7 @@ public class SecurityConfig {
.addFilterBefore(new HTTPSignatureAuthenticationFilter(signatureManager, userService), BasicAuthenticationFilter.class)
.authorizeRequests()
.antMatchers(HttpMethod.OPTIONS).permitAll()
- .antMatchers("/api/", "/api/messages", "/api/messages/discussions", "/api/users", "/api/thread", "/api/tags", "/api/tlgmbtwbhk", "/api/fbwbhk",
+ .antMatchers("/api/", "/api/messages", "/api/avatar", "/api/messages/discussions", "/api/users", "/api/thread", "/api/tags", "/api/tlgmbtwbhk", "/api/fbwbhk",
"/api/skypebotendpoint", "/api/_fblogin", "/api/_vklogin", "/api/_tglogin", "/api/_google", "/api/signup", "/api/inbox", "/api/events", "/api/info/**").permitAll()
.anyRequest().hasRole("USER")
.and()