diff --git a/ruoyi-framework/src/main/java/com/ruoyi/framework/config/SecurityConfig.java b/ruoyi-framework/src/main/java/com/ruoyi/framework/config/SecurityConfig.java
index 253d131..874ff6b 100644
--- a/ruoyi-framework/src/main/java/com/ruoyi/framework/config/SecurityConfig.java
+++ b/ruoyi-framework/src/main/java/com/ruoyi/framework/config/SecurityConfig.java
@@ -121,11 +121,11 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter {
                 // 打包服务器需要无token访问
 //                .antMatchers("/system/dict/data/type/**").anonymous()
                 .antMatchers("/*/api-docs").anonymous()
-                .antMatchers("/zongzhi/tj/*").anonymous()
-                .antMatchers("/zongzhi/sourceTj/*").anonymous()
                 .antMatchers("/*/api-docs").anonymous()
                 // 静态资源，可匿名访问
                 .antMatchers(HttpMethod.GET, "/", "/*.html", "/**/*.html", "/**/*.css", "/**/*.js", "/profile/**").permitAll()
+                .antMatchers("/zongzhi/tj/*").permitAll()
+                .antMatchers("/zongzhi/sourceTj/*").permitAll()
                 .antMatchers("/swagger-ui.html", "/swagger-resources/**", "/webjars/**", "/*/api-docs", "/druid/**", "/zongzhi/**","/system/dict/data/**").permitAll()
                 // 除上面外的所有请求全部需要鉴权认证
                 .anyRequest().authenticated()