Java - antMatchers

class WebSecurityConfig extends WebSecurityConfigurerAdapter {

	@Override

	protected void configure(HttpSecurity http) throws Exception {

		http.authorizeRequests()

				.antMatchers("/web/games.html").permitAll()

				.antMatchers("/api/games").permitAll()

				.antMatchers("/resources/static/web/scripts/games.js").permitAll()

				.antMatchers("/resources/static/web/css/games.css").permitAll()

				.antMatchers("/web/**").hasAuthority("USER")

				.antMatchers("/api/game_view/**").hasAuthority("USER")

				.antMatchers("/resources/static/web/**").hasAuthority("USER");

		http.formLogin()

				.usernameParameter("name")

				.passwordParameter("pwd")

				.loginPage("/api/login");

		http.logout().logoutUrl("/api/logout");

	}

http

                .authorizeRequests()

                .antMatchers("/", "/web/**", "/css/** " ,"/js/**", "/images/**", "/listar", "/locale")

                .permitAll()

//No es necesario colocar toda la ruta

//solo con que se le de el permiso a la carpeta css

.antMatchers("/resources/static/web/css/games.css").permitAll()

.antMatchers("/web/games.html").permitAll()