Ignore cache control headers for static resources.

Igor Kulikov
1 parent 9e1dbd4f
Showing 1 changed file with 6 additions and 0 deletions
application/src/main/java/org/thingsboard/server/config/ThingsboardSecurityConfiguration.java
--- a/application/src/main/java/org/thingsboard/server/config/ThingsboardSecurityConfiguration.java
View file @8eb6172
+++ b/application/src/main/java/org/thingsboard/server/config/ThingsboardSecurityConfiguration.java
View file @8eb6172
@@ -28,6 +28,7 @@ import org.springframework.security.authentication.AuthenticationManager;
 import org.springframework.security.config.annotation.authentication.builders.AuthenticationManagerBuilder;
 import org.springframework.security.config.annotation.method.configuration.EnableGlobalMethodSecurity;
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.builders.WebSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
 import org.springframework.security.config.http.SessionCreationPolicy;
@@ -148,6 +149,11 @@ public class ThingsboardSecurityConfiguration extends WebSecurityConfigurerAdapt
     }
 
     @Override
+    public void configure(WebSecurity web) throws Exception {
+        web.ignoring().antMatchers("/static/**");
+    }
+
+    @Override
     protected void configure(HttpSecurity http) throws Exception {
         http.headers().cacheControl().and().frameOptions().disable()
                 .and()