minor, api format

commit: 56e260c6fa1054112bdd6a05807f63d62827bcd2 [log] [tgz]
author: shaofengshi <shaofengshi@apache.org> Sat Jul 18 16:42:06 2020 +0800
committer: shaofengshi <shaofengshi@apache.org> Fri Jul 31 23:32:39 2020 +0800
tree: ba660cc0c5d60e6e3cb2adb193418df884e11911
parent: 3e0472d12bddadfcd5fbea4b1ca4c6fc0e9291a6 [diff]
diff --git a/kylin-it/src/test/java/org/apache/kylin/restclient/ITRestClientTest.java b/kylin-it/src/test/java/org/apache/kylin/restclient/ITRestClientTest.java
index c97f08b..adf98fa 100644
--- a/kylin-it/src/test/java/org/apache/kylin/restclient/ITRestClientTest.java
+++ b/kylin-it/src/test/java/org/apache/kylin/restclient/ITRestClientTest.java

@@ -64,6 +64,7 @@
         logger.info("random jetty port: " + PORT);
         sysPropsOverride.override("spring.profiles.active", "testing");
         sysPropsOverride.override("catalina.home", "."); // resources/log4j.properties ref ${catalina.home}
+        sysPropsOverride.override("kylin.web.set-config-enable", "true");
         staticCreateTestMetadata();
         startJetty();
     }

diff --git a/server/src/main/resources/kylinSecurity.xml b/server/src/main/resources/kylinSecurity.xml
index c08ae70..adcf67f 100644
--- a/server/src/main/resources/kylinSecurity.xml
+++ b/server/src/main/resources/kylinSecurity.xml

@@ -248,7 +248,7 @@
             <scr:intercept-url pattern="/api/streaming*/**" access="isAuthenticated()"/>
             <scr:intercept-url pattern="/api/job*/**" access="isAuthenticated()"/>
             <scr:intercept-url pattern="/api/admin/public_config" access="permitAll"/>
-            <scr:intercept-url pattern="/api/projects" access="permitAll"/>
+            <scr:intercept-url pattern="/api/projects" access="isAuthenticated()"/>
             <scr:intercept-url pattern="/api/admin*/**" access="hasRole('ROLE_ADMIN')"/>
             <scr:intercept-url pattern="/api/tables/**/snapshotLocalCache/**" access="permitAll"/>
             <scr:intercept-url pattern="/api/**" access="isAuthenticated()"/>
@@ -293,7 +293,6 @@
             <scr:intercept-url pattern="/api/models*/**" access="isAuthenticated()"/>
             <scr:intercept-url pattern="/api/streaming*/**" access="isAuthenticated()"/>
             <scr:intercept-url pattern="/api/job*/**" access="isAuthenticated()"/>
-            <scr:intercept-url pattern="/api/admin/config" access="permitAll"/>
             <scr:intercept-url pattern="/api/projects*/*" access="isAuthenticated()"/>
             <scr:intercept-url pattern="/api/admin*/**" access="hasRole('ROLE_ADMIN')"/>
             <scr:intercept-url pattern="/api/tables/**/snapshotLocalCache/**" access="permitAll"/>
commit	56e260c6fa1054112bdd6a05807f63d62827bcd2	[log] [tgz]
author	shaofengshi <shaofengshi@apache.org>	Sat Jul 18 16:42:06 2020 +0800
committer	shaofengshi <shaofengshi@apache.org>	Fri Jul 31 23:32:39 2020 +0800
tree	ba660cc0c5d60e6e3cb2adb193418df884e11911
parent	3e0472d12bddadfcd5fbea4b1ca4c6fc0e9291a6 [diff]