Permit access to actuators' endpoints to all

ff775ed0 · Adam Krídl · 60c70d58 · ff775ed0 · ff775ed0 · ff775ed0
Verified Commit ff775ed0 authored 1 year ago by Adam Krídl
--- a/core/src/main/java/cz/muni/fi/pa165/core/config/AppConfig.java
+++ b/core/src/main/java/cz/muni/fi/pa165/core/config/AppConfig.java
@@ -23,6 +23,9 @@ public class AppConfig {
                        .requestMatchers(HttpMethod.GET, "/").permitAll()
                        .requestMatchers(HttpMethod.GET, "/swagger-ui.html").permitAll()
+                        // actuator
+                        .requestMatchers("/actuator/**").permitAll()
                        // Manager can read everything
                        .requestMatchers(HttpMethod.GET, "/api/**").hasAuthority(Authorities.MANAGER)

--- a/report/src/main/java/cz/muni/fi/pa165/report/server/config/AppConfig.java
+++ b/report/src/main/java/cz/muni/fi/pa165/report/server/config/AppConfig.java
@@ -22,6 +22,10 @@ public class AppConfig {
                        .requestMatchers("/v3/api-docs/**").permitAll()
                        .requestMatchers(HttpMethod.GET, "/").permitAll()
                        .requestMatchers(HttpMethod.GET, "/swagger-ui.html").permitAll()
+                        // actuator
+                        .requestMatchers("/actuator/**").permitAll()
                        // Manager has access to all reports
                        .anyRequest().hasAuthority(Authorities.MANAGER)
                )

--- a/user/src/main/java/cz/muni/fi/pa165/user/server/config/AppConfig.java
+++ b/user/src/main/java/cz/muni/fi/pa165/user/server/config/AppConfig.java
@@ -23,6 +23,9 @@ public class AppConfig {
                        .requestMatchers(HttpMethod.GET, "/").permitAll()
                        .requestMatchers(HttpMethod.GET, "/swagger-ui.html").permitAll()
+                        // actuator
+                        .requestMatchers("/actuator/**").permitAll()
                        // used under the authority of the user using the original api
                        .requestMatchers("/api/users/action").authenticated()

--- a/weather/src/main/java/cz/muni/fi/pa165/weather/server/config/AppConfig.java
+++ b/weather/src/main/java/cz/muni/fi/pa165/weather/server/config/AppConfig.java
@@ -22,6 +22,10 @@ public class AppConfig {
                        .requestMatchers("/v3/api-docs/**").permitAll()
                        .requestMatchers(HttpMethod.GET, "/").permitAll()
                        .requestMatchers(HttpMethod.GET, "/swagger-ui.html").permitAll()
+                        // actuator
+                        .requestMatchers(HttpMethod.GET, "/actuator/**").permitAll()
                        // MANAGER has access to everything in this service
                        .anyRequest().hasAuthority(Authorities.MANAGER)
                )