Spring Boot - using .permitAll() on requested endpoint but still getting a 401 error | Together Java | Page 1

covert meadow Mar 11, 2025, 7:52 PM

#

Code

package com.ronapps.ecommerceapi.security;
import ...
@Configuration
@EnableWebSecurity
public class SecurityConfiguration {

    @Autowired
    private MyUserDetailsService myUserDetailsService; 
        
    @Bean
    public AuthenticationManager authenticationManager() throws Exception {
        DaoAuthenticationProvider provider = new DaoAuthenticationProvider();
        provider.setUserDetailsService(myUserDetailsService);
        provider.setPasswordEncoder(bcryptPasswordEncoder());
        return new ProviderManager(provider);
    }

    @Bean
    SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
        http.authorizeHttpRequests(auth -> auth
                        .requestMatchers( "/register_user", "/register_admin", "/login", "/home").permitAll()
                        .requestMatchers("/user/**").hasRole("USER")
                        .requestMatchers("/admin/**").hasRole("ADMIN")
                        .anyRequest().authenticated())
                       .httpBasic(Customizer.withDefaults())
                        .csrf(crsf -> crsf.disable());
        return http.build();
    }

    @Bean
    PasswordEncoder bcryptPasswordEncoder() {
        return new BCryptPasswordEncoder();
    }
}```

I tried sending an  API request to my `register_user` endpoint but i'm getting a 401 error despite using `permitAll()`

north kelpBOT Mar 11, 2025, 7:52 PM

#

<@&1004656351647117403> please have a look, thanks.

covert meadow Mar 11, 2025, 8:59 PM

#

Spring Boot - using .permitAll() on requested endpoint but still getting a 401 error

worn echo Mar 12, 2025, 3:14 AM

#

Which URL are you using?

digital socket Mar 12, 2025, 4:05 AM

#

Can you try sending the request via Postman, if that works then you would have to set up CORS configuration.

north kelpBOT Mar 12, 2025, 4:24 PM

#

@covert meadow

Your question has been closed due to inactivity.

If it was not resolved yet, feel free to just post a message below
to reopen it, or create a new thread.

Note that usually the reason for nobody calling back is that your
question may have been not well asked and hence no one felt confident
enough answering.

When you reopen the thread, try to use your time to improve the quality
of the question by elaborating, providing details, context, all relevant code
snippets, any errors you are getting, concrete examples and perhaps also some
screenshots. Share your attempt, explain the expected results and compare
them to the current results.

Also try to make the information easily accessible by sharing code
or assignment descriptions directly on Discord, not behind a link or
PDF-file; provide some guidance for long code snippets and ensure
the code is well formatted and has syntax highlighting. Kindly read through
https://stackoverflow.com/help/how-to-ask for more.

With enough info, someone knows the answer for sure 👍

covert meadow Mar 12, 2025, 4:33 PM

#

Sorry guys for inactivity

#

I fixed the issue by setting the cascade type to permit for my users and roles

#Spring Boot - using .permitAll() on requested endpoint but still getting a 401 error