Re: [PR] feature: add MCP custom configuration and authentication code [incubator-seata]

via GitHub Mon, 22 Dec 2025 02:40:49 -0800


funky-eyes commented on code in PR #7876:
URL: https://github.com/apache/incubator-seata/pull/7876#discussion_r2639448506



##########
console/src/main/java/org/apache/seata/console/config/WebSecurityConfig.java:
##########
@@ -109,8 +120,13 @@ public WebSecurityCustomizer webSecurityCustomizer() {
     @Bean
     public SecurityFilterChain securityFilterChain(HttpSecurity http, 
AuthenticationManager authenticationManager)
             throws Exception {
-        RequestMatcher[] csrfIgnored = 
buildAntMatchers(env.getProperty("seata.security.csrf-ignore-urls"));
-
+        StringBuilder csrfIgnoreUrls = new 
StringBuilder(env.getProperty("seata.security.csrf-ignore-urls", "/**"));

Review Comment:
   why not use @value?



-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

To unsubscribe, e-mail: [email protected]

For queries about this service, please contact Infrastructure at:
[email protected]


---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]

Re: [PR] feature: add MCP custom configuration and authentication code [incubator-seata]

Reply via email to