Fix Kubernetes readiness and liveness endpoints by giving higher precedence to anonymous paths

sluehr · sluehr · commit b176955af6a5 · 2020-10-27T17:25:11.000+11:00
diff --git a/src/main/java/engineering/everest/starterkit/security/config/ResourceServerConfig.java b/src/main/java/engineering/everest/starterkit/security/config/ResourceServerConfig.java
@@ -79,8 +79,8 @@ public void configure(HttpSecurity http) throws Exception {
                 .csrf().disable()
                 .sessionManagement().sessionCreationPolicy(STATELESS).and()
                 .authorizeRequests(request ->
-                        request.antMatchers(ADMIN_USERS_PATHS).access("hasRole('ADMIN')")
-                                .antMatchers(ANONYMOUS_USER_PATHS).access("permitAll")
+                        request.antMatchers(ANONYMOUS_USER_PATHS).access("permitAll")
+                                .antMatchers(ADMIN_USERS_PATHS).access("hasRole('ADMIN')")
                                 .antMatchers(AUTHENTICATED_USER_PATHS).access("authenticated"));
     }
 }

Original file line number	Diff line number	Diff line change
`@@ -79,8 +79,8 @@ public void configure(HttpSecurity http) throws Exception {`
`79`	`79`	`.csrf().disable()`
`80`	`80`	`.sessionManagement().sessionCreationPolicy(STATELESS).and()`
`81`	`81`	`.authorizeRequests(request ->`
`82`		`- request.antMatchers(ADMIN_USERS_PATHS).access("hasRole('ADMIN')")`
`83`		`- .antMatchers(ANONYMOUS_USER_PATHS).access("permitAll")`
	`82`	`+ request.antMatchers(ANONYMOUS_USER_PATHS).access("permitAll")`
	`83`	`+ .antMatchers(ADMIN_USERS_PATHS).access("hasRole('ADMIN')")`
`84`	`84`	`.antMatchers(AUTHENTICATED_USER_PATHS).access("authenticated"));`
`85`	`85`	`}`
`86`	`86`	`}`