diff --git a/src/main/java/com/xkrs/common/config/WebSecurityConfig.java b/src/main/java/com/xkrs/common/config/WebSecurityConfig.java
index 6c9a385..2730d77 100644
--- a/src/main/java/com/xkrs/common/config/WebSecurityConfig.java
+++ b/src/main/java/com/xkrs/common/config/WebSecurityConfig.java
@@ -37,6 +37,8 @@ class WebSecurityConfig extends WebSecurityConfigurerAdapter {
                 .antMatchers("/push/**").permitAll()
                 .antMatchers("/dispatch/**").permitAll()
                 .antMatchers("/queryFirePoint").permitAll()
+                .antMatchers(HttpMethod.POST, "/insertFirePoint").permitAll()
+                .antMatchers(HttpMethod.POST, "/insertFirePointChannelPrecise").permitAll()
                 .antMatchers(HttpMethod.POST, "/api/user/updateSysUser").permitAll()
                 .antMatchers(HttpMethod.GET, "/selectGlobalConfigDict").permitAll()
                 .antMatchers(HttpMethod.GET, "/selectGlobalConfigValue").permitAll()
@@ -48,10 +50,8 @@ class WebSecurityConfig extends WebSecurityConfigurerAdapter {
                 .antMatchers(HttpMethod.POST, "/api/login").permitAll()
                 // 所有 app 用户注册 的POST请求 都放行
                 .antMatchers(HttpMethod.POST, "/api/person-investigator/add").permitAll()
-                .antMatchers("/ws/asset").permitAll()
                 .antMatchers(HttpMethod.GET, "/api/user/booleanUserName").permitAll()
                 .antMatchers(HttpMethod.GET, "/queryzzhd").permitAll()
-                .antMatchers(HttpMethod.POST, "/insertFirePoint").permitAll()
                 .antMatchers(HttpMethod.POST, "/insertAppTask").permitAll()
                 .antMatchers(HttpMethod.GET, "/selectAppTask").permitAll()
                 .antMatchers(HttpMethod.GET, "/selectCityName").permitAll()