We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
1 parent 4624007 commit 872d49aCopy full SHA for 872d49a
src/main/java/app/smartpot/api/security/config/SecurityConfiguration.java
@@ -65,11 +65,7 @@ public SecurityFilterChain securityFilterChain(HttpSecurity httpSec) throws Exce
65
}
66
67
return httpSec
68
- .csrf(csrf -> csrf
69
- // Ignorar CSRF para todas las rutas de API REST que usan autenticación JWT
70
- // CSRF no es necesario ni apropiado para APIs stateless con tokens en headers
71
- .ignoringRequestMatchers("/**")
72
- )
+ .csrf(csrf -> csrf.disable())
73
.cors(cors -> cors.configurationSource(corsConfig))
74
.authorizeHttpRequests(authorizationManagerRequestMatcherRegistry -> {
75
authorizationManagerRequestMatcherRegistry.requestMatchers(publicRoutesList.toArray(new String[0])).permitAll();
0 commit comments