更新 %API%SecurityConfig.java.ftl

SLN/%PUBPRJ%-provider/%PUBPRJ%-provider-%SYSAPI_PKGPATH%/src/main/java/%SYS_PKGPATH%/%SYSAPI_PKGPATH%/config/%API%SecurityConfig.java.ftl

@@ -58,6 +58,9 @@ public class ${item.codeName}SecurityConfig extends WebSecurityConfigurerAdapter
     @Value("${r'${ibiz.file.previewpath:ibizutil/preview}"'})
     private String previewpath;
     
+    @Value("${r'${ibiz.auth.excludesPattern:}"'})
+    private String excludesPattern;
+
     @Autowired
     public void configureGlobal(AuthenticationManagerBuilder auth) throws Exception {
         auth
@@ -122,8 +125,16 @@ public class ${item.codeName}SecurityConfig extends WebSecurityConfigurerAdapter
                 .antMatchers("/"+downloadpath+"/**").permitAll()
                 .antMatchers("/"+uploadpath).permitAll()
                 .antMatchers("/"+previewpath+"/**").permitAll()
+                
+        if (StringUtils.isNotBlank(excludesPattern)) {
+            for (String excludePattern : excludesPattern.split("\\s*,\\s*")) {
+                authenticationTokenFilter.addExcludePattern(excludePattern);
+                httpSecurity.authorizeRequests().antMatchers(excludePattern).permitAll();
+            }
+        }
+                
         // 所有请求都需要认证
-                .anyRequest().authenticated()
+        httpSecurity.authorizeRequests().anyRequest().authenticated()
                 // 防止iframe 造成跨域
                 .and().headers().frameOptions().disable();