diff --git a/ruoyi-admin/src/main/java/com/ruoyi/web/controller/xkt/StoreController.java b/ruoyi-admin/src/main/java/com/ruoyi/web/controller/xkt/StoreController.java
index 6e2b3b16c..d48122a67 100644
--- a/ruoyi-admin/src/main/java/com/ruoyi/web/controller/xkt/StoreController.java
+++ b/ruoyi-admin/src/main/java/com/ruoyi/web/controller/xkt/StoreController.java
@@ -110,7 +110,6 @@ public class StoreController extends XktBaseController {
         return R.ok(BeanUtil.toBean(storeService.getApproveInfo(storeId), StoreApproveResVO.class));
     }
 
-    @PreAuthorize("@ss.hasAnyRoles('admin,general_admin,store,seller,agent')||@ss.hasSupplierSubRole()")
     @ApiOperation(value = "APP获取档口基本信息", httpMethod = "GET", response = R.class)
     @GetMapping(value = "/app/{storeId}")
     public R<StoreAppResVO> getAppInfo(@PathVariable("storeId") Long storeId) {
diff --git a/ruoyi-framework/src/main/java/com/ruoyi/framework/config/SecurityConfig.java b/ruoyi-framework/src/main/java/com/ruoyi/framework/config/SecurityConfig.java
index 62d2f23a0..8a19db8dc 100644
--- a/ruoyi-framework/src/main/java/com/ruoyi/framework/config/SecurityConfig.java
+++ b/ruoyi-framework/src/main/java/com/ruoyi/framework/config/SecurityConfig.java
@@ -147,6 +147,10 @@ public class SecurityConfig
                         .antMatchers("/rest/v1/prods/status/cate/num/**").permitAll()
                         // PC 商品详情
                         .antMatchers("/rest/v1/prods/pc/detail/**").permitAll()
+                        // APP 商品详情
+                        .antMatchers("/rest/v1/prods/app/detail/**").permitAll()
+                        // APP 档口详情
+                        .antMatchers("/rest/v1/stores/app/**").permitAll()
                         // 获取字段类型
                         .antMatchers("/rest/v1/sys/dict/data/type/**").permitAll()
                         // 健康检查