bugfix: permit access to Swagger UI (#134)

Co-authored-by: Michael Hoennig <michael@hoennig.de>
Reviewed-on: #134
Reviewed-by: Marc Sandlus <marc.sandlus@hostsharing.net>

src/main/java/net/hostsharing/hsadminng/config/WebSecurityConfig.java

@@ -17,10 +17,11 @@ public class WebSecurityConfig {
         return http
                 .authorizeHttpRequests(authorize -> authorize
                         .requestMatchers("/api/**").permitAll() // TODO.impl: implement authentication
+                        .requestMatchers("/swagger-ui/**").permitAll()
+                        .requestMatchers("/v3/api-docs/**").permitAll()
                         .requestMatchers("/actuator/**").permitAll()
                         .anyRequest().authenticated()
                 )
                 .build();
     }
-
 }

src/test/java/net/hostsharing/hsadminng/config/WebSecurityConfigIntegrationTest.java

@@ -42,6 +42,20 @@ class WebSecurityConfigIntegrationTest {
         assertThat(result.getStatusCode()).isEqualTo(HttpStatus.OK);
     }
 
+    @Test
+    public void shouldSupportSwaggerUi() {
+        final var result = this.restTemplate.getForEntity(
+                "http://localhost:" + this.managementPort + "/swagger-ui/index.html", String.class);
+        assertThat(result.getStatusCode()).isEqualTo(HttpStatus.OK);
+    }
+
+    @Test
+    public void shouldSupportApiDocs() {
+        final var result = this.restTemplate.getForEntity(
+                "http://localhost:" + this.managementPort + "/v3/api-docs/swagger-config", String.class);
+        assertThat(result.getStatusCode()).isEqualTo(HttpStatus.NOT_FOUND); // permitted but not configured
+    }
+
     @Test
     public void shouldSupportHealthEndpoint() {
         final var result = this.restTemplate.getForEntity(