From d780278da4e0c5b377482fc872d28303769046ba Mon Sep 17 00:00:00 2001
From: chenhao <chenhao2@unisinsight.com>
Date: Thu, 2 Apr 2026 17:05:41 +0800
Subject: [PATCH] =?UTF-8?q?refactor:=20=E7=A7=BB=E9=99=A4Android=20API?=
 =?UTF-8?q?=E5=92=8CWebSocket=E5=AE=89=E5=85=A8=E9=85=8D=E7=BD=AE=EF=BC=8C?=
 =?UTF-8?q?=E6=9B=B4=E6=96=B0=E5=BA=94=E7=94=A8=E9=85=8D=E7=BD=AE?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- 删除 `AndroidApiSecurityConfig` 和 `WebSocketSecurityConfig` 类
- 更新 `application.yml`，添加 `/api/android/**` 和 `/ws/**` 到 `permit-all-urls`
---
 .../config/AndroidApiSecurityConfig.java      | 21 -------------------
 .../config/WebSocketSecurityConfig.java       | 21 -------------------
 backend/src/main/resources/application.yml    |  2 ++
 3 files changed, 2 insertions(+), 42 deletions(-)
 delete mode 100644 backend/src/main/java/com/imeeting/config/AndroidApiSecurityConfig.java
 delete mode 100644 backend/src/main/java/com/imeeting/config/WebSocketSecurityConfig.java

diff --git a/backend/src/main/java/com/imeeting/config/AndroidApiSecurityConfig.java b/backend/src/main/java/com/imeeting/config/AndroidApiSecurityConfig.java
deleted file mode 100644
index 126f060..0000000
--- a/backend/src/main/java/com/imeeting/config/AndroidApiSecurityConfig.java
+++ /dev/null
@@ -1,21 +0,0 @@
-package com.imeeting.config;
-
-import org.springframework.context.annotation.Bean;
-import org.springframework.context.annotation.Configuration;
-import org.springframework.core.annotation.Order;
-import org.springframework.security.config.annotation.web.builders.HttpSecurity;
-import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
-import org.springframework.security.web.SecurityFilterChain;
-
-@Configuration
-public class AndroidApiSecurityConfig {
-
-    @Bean
-    @Order(1)
-    public SecurityFilterChain androidApiSecurityFilterChain(HttpSecurity http) throws Exception {
-        http.securityMatcher("/api/android/**")
-                .csrf(AbstractHttpConfigurer::disable)
-                .authorizeHttpRequests(authorize -> authorize.anyRequest().permitAll());
-        return http.build();
-    }
-}
diff --git a/backend/src/main/java/com/imeeting/config/WebSocketSecurityConfig.java b/backend/src/main/java/com/imeeting/config/WebSocketSecurityConfig.java
deleted file mode 100644
index a953c1d..0000000
--- a/backend/src/main/java/com/imeeting/config/WebSocketSecurityConfig.java
+++ /dev/null
@@ -1,21 +0,0 @@
-package com.imeeting.config;
-
-import org.springframework.context.annotation.Bean;
-import org.springframework.context.annotation.Configuration;
-import org.springframework.core.annotation.Order;
-import org.springframework.security.config.annotation.web.builders.HttpSecurity;
-import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
-import org.springframework.security.web.SecurityFilterChain;
-
-@Configuration
-public class WebSocketSecurityConfig {
-
-    @Bean
-    @Order(0)
-    public SecurityFilterChain webSocketSecurityFilterChain(HttpSecurity http) throws Exception {
-        http.securityMatcher("/ws/**")
-                .csrf(AbstractHttpConfigurer::disable)
-                .authorizeHttpRequests(authorize -> authorize.anyRequest().permitAll());
-        return http.build();
-    }
-}
diff --git a/backend/src/main/resources/application.yml b/backend/src/main/resources/application.yml
index 132fd57..7eafe19 100644
--- a/backend/src/main/resources/application.yml
+++ b/backend/src/main/resources/application.yml
@@ -42,6 +42,8 @@ unisbase:
     permit-all-urls:
       - /actuator/health
       - /api/static/**
+      - /api/android/**
+      - /ws/**
   internal-auth:
     enabled: true
     header-name: X-Internal-Secret