From a259b0adbde5b3bb0e3c32a867c8c9c089ef82d8 Mon Sep 17 00:00:00 2001
From: TS-QD1 <tskj_pc1@163.com>
Date: Sun, 26 Nov 2023 22:21:29 +0800
Subject: [PATCH] =?UTF-8?q?=E6=94=BE=E5=BC=80=E8=B7=A8=E5=9F=9F?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../com/cm/population/config/AuthClientSecurityConfig.java     | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/main/java/com/cm/population/config/AuthClientSecurityConfig.java b/src/main/java/com/cm/population/config/AuthClientSecurityConfig.java
index 02f8d5e..0256f67 100644
--- a/src/main/java/com/cm/population/config/AuthClientSecurityConfig.java
+++ b/src/main/java/com/cm/population/config/AuthClientSecurityConfig.java
@@ -41,6 +41,7 @@ public class AuthClientSecurityConfig extends WebSecurityConfigurerAdapter {
                 .and()
                 .logout().logoutSuccessUrl(authServer.getOauthLogout())
                 .and()
+//                .authorizeRequests().antMatchers("/app/**", "/resource/**", "/route/file/**", "/assets/**","/route/bigdata/**", "/route/populationinfo-data/**",
                 .authorizeRequests().antMatchers("/app/**", "/resource/**", "/route/file/**", "/assets/**","/route/bigdata/**",
                 "/api/**").permitAll()
                 .and()
@@ -48,7 +49,7 @@ public class AuthClientSecurityConfig extends WebSecurityConfigurerAdapter {
                 .anyRequest()
                 .access("@clientRbacService.hasPermission(request, authentication)")
                 .and()
-                .headers().frameOptions().sameOrigin()
+                .headers().frameOptions().disable()
                 .and()
                 .cors()
                 .and()