feat(gateway): add permitted requests for public routes

skrollu · Aug 18, 2023 · 8bac100 · 8bac100
1 parent f8eb059
commit 8bac100
Show file tree

Hide file tree

Showing 2 changed files with 8 additions and 4 deletions.
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,3 +1,7 @@
+### 18-08-2023
+
+- Requests through the gateway now works fine for un/authenticated requests.
+
 ### 15-08-2023
 
 - Change the authorization flow of keycloak with a user id user password user

diff --git a/...way-server/src/main/java/com/starshipshop/gatewayserver/config/SecurityConfiguration.java b/...way-server/src/main/java/com/starshipshop/gatewayserver/config/SecurityConfiguration.java
@@ -15,10 +15,10 @@ SecurityWebFilterChain securityFilterChain(ServerHttpSecurity http) {
         http
                 .csrf().disable()
                 .authorizeExchange(exchange -> exchange
-                        .pathMatchers("/eureka/**") // static resources
-                        .permitAll()
-                        .anyExchange()
-                        .authenticated())
+                        .pathMatchers("/api/v1/products/**").permitAll()
+                        .pathMatchers("/api/v1/starships/**").permitAll()
+                        .pathMatchers("/api/v1/inventory/**").permitAll()
+                        .anyExchange().authenticated())
                 .oauth2Login();
         return http.build();
     }