I am using the following Java Config with Spring Security:

我在 Spring Security 中使用以下 Java 配置：

protected void configure(HttpSecurity http) throws Exception {
    http
        .authorizeRequests()
            .anyRequest().authenticated()
            .and()
        .httpBasic();
}

Based on this configuration, all requests are authenticated. When you hit a controller without being authenticated, the AnonymousAuthenticationFilterwill create an Authentication object for you with username=anonymousUser, role=ROLE_ANONYMOUS.

基于此配置，所有请求都经过身份验证。当您在未通过身份验证的情况下点击控制器时，AnonymousAuthenticationFilter将为您创建一个 Authentication 对象username=anonymousUser, role=ROLE_ANONYMOUS。

I am trying to provide anonymous access to a a specific controller method and have tried to use each of the following:

我正在尝试提供对特定控制器方法的匿名访问，并尝试使用以下各项：

1. @Secured("ROLE_ANONYMOUS")
2. @Secured("IS_AUTHENTICATED_ANONYMOUSLY")

1. @Secured("ROLE_ANONYMOUS")
2. @Secured("IS_AUTHENTICATED_ANONYMOUSLY")

When the controller methods get invoked, the following response is given: "HTTP Status 401 - Full authentication is required to access this resource"

当控制器方法被调用时，给出以下响应：“HTTP 状态 401 - 访问此资源需要完全身份验证”

Can someone help me understand why we are receiving this message and why ROLE_ANONYMOUS/IS_AUTHENTICATED_ANONYMOUSLYdon't seem to work using this configuration?

有人可以帮助我理解为什么我们会收到此消息以及为什么ROLE_ANONYMOUS/IS_AUTHENTICATED_ANONYMOUSLY似乎无法使用此配置工作吗？

Thanks,
JP

谢谢，
JP