From 6a4f3498c78e54b549aaa5b63e7fd3c3ff9be7af Mon Sep 17 00:00:00 2001 From: Art Date: Tue, 21 Sep 2021 20:56:10 +0300 Subject: [PATCH] 173. Test edit user - CORS modified -> enabled PUT method (#23) --- .../backend/config/SecurityConfig.java | 14 +++++++++++++- 1 file changed, 13 insertions(+), 1 deletion(-) diff --git a/support-portal-backend/src/main/java/net/shyshkin/study/fullstack/supportportal/backend/config/SecurityConfig.java b/support-portal-backend/src/main/java/net/shyshkin/study/fullstack/supportportal/backend/config/SecurityConfig.java index 7ab1f0f..ad12eb4 100644 --- a/support-portal-backend/src/main/java/net/shyshkin/study/fullstack/supportportal/backend/config/SecurityConfig.java +++ b/support-portal-backend/src/main/java/net/shyshkin/study/fullstack/supportportal/backend/config/SecurityConfig.java @@ -20,6 +20,10 @@ import org.springframework.security.web.authentication.UsernamePasswordAuthentic import org.springframework.web.servlet.config.annotation.CorsRegistry; import org.springframework.web.servlet.config.annotation.WebMvcConfigurer; +import java.util.List; + +import static org.springframework.http.HttpMethod.*; + @EnableWebSecurity @EnableGlobalMethodSecurity(prePostEnabled = true) @RequiredArgsConstructor @@ -75,7 +79,15 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter { registry.addMapping("/user/login") .allowedOrigins(allowedOrigins) .exposedHeaders(SecurityConstants.JWT_TOKEN_HEADER); - registry.addMapping("/**").allowedOrigins(allowedOrigins); + + String[] allowedMethods = List.of(GET, POST, PUT, DELETE) + .stream() + .map(Enum::name) + .toArray(String[]::new); + + registry.addMapping("/**") + .allowedMethods(allowedMethods) + .allowedOrigins(allowedOrigins); } }; }