is it ok

CaesarLi-WantToBeAFreeMan · CaesarLi-WantToBeAFreeMan · commit 8d4e21aee361 · 2026-03-09T15:39:46.000+08:00
diff --git a/backend/src/main/java/com/caesarjlee/caesarfinancialtracker/configurations/SecurityConfiguration.java b/backend/src/main/java/com/caesarjlee/caesarfinancialtracker/configurations/SecurityConfiguration.java
@@ -34,14 +34,13 @@ public SecurityFilterChain securityFilterChain(HttpSecurity httpSecurity) throws
             .sessionManagement(
                 session -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
             .authorizeHttpRequests(
-                authentication
-                -> authentication
-                       .requestMatchers(HttpMethod.OPTIONS, "/**")
-                       .permitAll()
-                       .requestMatchers(HttpMethod.POST, "/api/alpha/profiles/register", "/api/alpha/profiles/login")// public endpoints
-                       .permitAll()
-                       .anyRequest()// everything else requires JWT
-                       .authenticated())
+                authentication -> authentication
+                    .requestMatchers(HttpMethod.OPTIONS, "/**")//allow CORS preflight for all endpoints
+                    .permitAll()
+                    .requestMatchers(HttpMethod.POST, "/profiles/register", "/profiles/login")
+                    .permitAll()
+                    .anyRequest()// everything else requires JWT
+                    .authenticated())
             .authenticationProvider(authenticationProvider())
             .addFilterBefore(jwtAuthenticationFilter, UsernamePasswordAuthenticationFilter.class);// JWT filter
         return httpSecurity.build();
diff --git a/backend/src/main/resources/application.yml b/backend/src/main/resources/application.yml
@@ -12,19 +12,16 @@ spring:
         properties:
             hibernate:
                 format_sql: true #format SQL statements
-        #render injects show-sql, and show SQL statements 4 development
         show-sql: ${SHOW_SQL:false}
-        database-platform: ${SPRING_JPA_DATABASE_PLATFORM}
 
 server:
-    #render injects PORT, and use port 1989 for development
     port: ${PORT:1989} #memorize Tiananmen Square protests that happened in June 4, 1989
     servlet:
         context-path: /api/alpha #API path for version alpha
 
 app:
     cors:
-        allowed-origins: ${CORS_ALLOWED_ORIGINS:http://localhost:5173} #developed and deployed locations
+        allowed-origins: ${CORS_ALLOWED_ORIGINS:http://localhost:5173}
 
 jwt:
     secret: ${JWT_SECRET}
