@Override public void configure(HttpSecurity http) throws Exception { //所有请求必须认证通过 http.authorizeRequests() //下边的路径放行 .antMatchers(..... "/web/member/member-register" ) .permitAll() .anyRequest().authenticated().and().csrf().disable(); }