From ffd232b42883a8bb746c4fbaf245a9d6a925088c Mon Sep 17 00:00:00 2001
From: pabloFuente <pablofuenteperez@gmail.com>
Date: Mon, 3 Nov 2025 18:43:36 +0100
Subject: [PATCH] openvidu-server: accept HEAD method to public URL endpoints

---
 .../src/main/java/io/openvidu/server/config/SecurityConfig.java  | 1 +
 1 file changed, 1 insertion(+)

diff --git a/openvidu-server/src/main/java/io/openvidu/server/config/SecurityConfig.java b/openvidu-server/src/main/java/io/openvidu/server/config/SecurityConfig.java
index 3650205c7..efba73dc1 100644
--- a/openvidu-server/src/main/java/io/openvidu/server/config/SecurityConfig.java
+++ b/openvidu-server/src/main/java/io/openvidu/server/config/SecurityConfig.java
@@ -94,6 +94,7 @@ public class SecurityConfig {
 		
 		// Public API endpoints (must come before /api/** pattern)
 		auth.requestMatchers(HttpMethod.GET, RequestMappings.API + "/config/openvidu-publicurl").permitAll()
+			.requestMatchers(HttpMethod.HEAD, RequestMappings.API + "/config/openvidu-publicurl").permitAll()
 			.requestMatchers(HttpMethod.GET, RequestMappings.ACCEPT_CERTIFICATE).permitAll();
 		
 		// Secure recordings depending on OPENVIDU_RECORDING_PUBLIC_ACCESS