From 9520502ec6690526327fc715c3bd3dd4041f9b05 Mon Sep 17 00:00:00 2001
From: gom1be <marco.gora@bosch.com>
Date: Wed, 13 Dec 2023 16:23:26 +0100
Subject: [PATCH] permit /token on the auth step after the SecureTokenFilter

---
 .../managedidentitywallets/config/security/SecurityConfig.java   | 1 +
 1 file changed, 1 insertion(+)

diff --git a/src/main/java/org/eclipse/tractusx/managedidentitywallets/config/security/SecurityConfig.java b/src/main/java/org/eclipse/tractusx/managedidentitywallets/config/security/SecurityConfig.java
index a14b15d09..905782ec5 100644
--- a/src/main/java/org/eclipse/tractusx/managedidentitywallets/config/security/SecurityConfig.java
+++ b/src/main/java/org/eclipse/tractusx/managedidentitywallets/config/security/SecurityConfig.java
@@ -78,6 +78,7 @@ public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                         .requestMatchers(new AntPathRequestMatcher("/docs/api-docs/**")).permitAll()
                         .requestMatchers(new AntPathRequestMatcher("/ui/swagger-ui/**")).permitAll()
                         .requestMatchers(new AntPathRequestMatcher("/actuator/health/**")).permitAll()
+                        .requestMatchers("/token").permitAll() // no token needed, as we use the SecureWebTokenFilter instead
                         .requestMatchers(new AntPathRequestMatcher("/actuator/loggers/**")).hasRole(ApplicationRole.ROLE_MANAGE_APP)
 
                         //did document resolve APIs