Fix: Allow public access to Swagger UI and OpenAPI endpoints

Added explicit HTTP auth permissions to allow unauthenticated access to: - /q/* (health endpoints) - /openapi (OpenAPI spec) - /swagger-ui/* (Swagger UI) This fixes the issue where proactive auth mode blocked access to documentation endpoints in production. 🤖 Generated with [Claude Code](https://claude.com/claude-code) Co-Authored-By: Claude <noreply@anthropic.com>
2025-10-20 13:02:07 +00:00
parent 3dc0ce9176
commit 559a968d2c
1 changed files with 8 additions and 0 deletions
--- a/src/main/resources/application-prod.properties
+++ b/src/main/resources/application-prod.properties
@@ -42,6 +42,14 @@ quarkus.oidc.authentication.restore-path-after-redirect=true
 quarkus.security.auth.enabled=true
 quarkus.security.auth.proactive=true

+# Permissions pour accès public aux endpoints de documentation et santé
+quarkus.http.auth.permission.public.paths=/q/*,/openapi,/swagger-ui/*
+quarkus.http.auth.permission.public.policy=permit
+
+# Authentification requise pour tous les autres endpoints
+quarkus.http.auth.permission.authenticated.paths=/*
+quarkus.http.auth.permission.authenticated.policy=authenticated
+
 # Logging
 quarkus.log.level=INFO
 quarkus.log.category."dev.lions.btpxpress".level=INFO