fix(security): 添加移动端API到安全白名单

2026-06-20 14:13:34 +08:00
parent 11aac8b135
commit 6843418a88
1 changed files with 15 additions and 0 deletions
--- a/healthlink-his-server/core-framework/src/main/java/com/core/framework/config/SecurityConfig.java
+++ b/healthlink-his-server/core-framework/src/main/java/com/core/framework/config/SecurityConfig.java
@@ -111,6 +111,21 @@ public class SecurityConfig {
                .permitAll()
                // 登录页租户列表，允许匿名访问
                .requestMatchers("/system/tenant/all-active")
+                .permitAll()
+                // 移动端API，允许匿名访问
+                .requestMatchers("/patient-home-manage/**")
+                .permitAll()
+                .requestMatchers("/nurse-station/**")
+                .permitAll()
+                .requestMatchers("/vital-signs/**")
+                .permitAll()
+                .requestMatchers("/nursing-mobile/**")
+                .permitAll()
+                .requestMatchers("/nursing-record/**")
+                .permitAll()
+                .requestMatchers("/nursing-execution/**")
+                .permitAll()
+                .requestMatchers("/api/v1/nursing/**")
                .permitAll()
                    // 除上面外的所有请求全部需要鉴权认证
                    .anyRequest().authenticated();