From 84d2b260896e336482c302cf2a52a79c013ee13e Mon Sep 17 00:00:00 2001
From: Anton Tananaev <anton.tananaev@gmail.com>
Date: Wed, 2 Dec 2015 12:09:47 +1300
Subject: Use annotations for resource access control

---
 src/org/traccar/api/resource/SessionResource.java | 3 +++
 1 file changed, 3 insertions(+)

(limited to 'src/org/traccar/api/resource/SessionResource.java')

diff --git a/src/org/traccar/api/resource/SessionResource.java b/src/org/traccar/api/resource/SessionResource.java
index 347beb9a3..53e29802c 100644
--- a/src/org/traccar/api/resource/SessionResource.java
+++ b/src/org/traccar/api/resource/SessionResource.java
@@ -19,6 +19,7 @@ import org.traccar.Context;
 import org.traccar.api.BaseResource;
 import org.traccar.model.User;
 
+import javax.annotation.security.PermitAll;
 import javax.servlet.http.HttpServletRequest;
 import javax.ws.rs.Consumes;
 import javax.ws.rs.DELETE;
@@ -43,6 +44,7 @@ public class SessionResource extends BaseResource {
     @javax.ws.rs.core.Context
     private HttpServletRequest req;
 
+    @PermitAll
     @GET
     public User get() {
         try {
@@ -57,6 +59,7 @@ public class SessionResource extends BaseResource {
         }
     }
 
+    @PermitAll
     @POST
     public User add(@FormParam("email") String email, @FormParam("password") String password) {
         try {
-- 
cgit v1.2.3