放开跨域

src/main/java/com/cm/population/config/AuthClientSecurityConfig.java

@@ -41,6 +41,7 @@ public class AuthClientSecurityConfig extends WebSecurityConfigurerAdapter {
                 .and()
                 .logout().logoutSuccessUrl(authServer.getOauthLogout())
                 .and()
+//                .authorizeRequests().antMatchers("/app/**", "/resource/**", "/route/file/**", "/assets/**","/route/bigdata/**", "/route/populationinfo-data/**",
                 .authorizeRequests().antMatchers("/app/**", "/resource/**", "/route/file/**", "/assets/**","/route/bigdata/**",
                 "/api/**").permitAll()
                 .and()
@@ -48,7 +49,7 @@ public class AuthClientSecurityConfig extends WebSecurityConfigurerAdapter {
                 .anyRequest()
                 .access("@clientRbacService.hasPermission(request, authentication)")
                 .and()
-                .headers().frameOptions().sameOrigin()
+                .headers().frameOptions().disable()
                 .and()
                 .cors()
                 .and()