diff --git a/src/main/java/run/halo/app/config/SwaggerConfiguration.java b/src/main/java/run/halo/app/config/SwaggerConfiguration.java
index 9fd849704..55c7b2cc5 100644
--- a/src/main/java/run/halo/app/config/SwaggerConfiguration.java
+++ b/src/main/java/run/halo/app/config/SwaggerConfiguration.java
@@ -62,6 +62,7 @@ public class SwaggerConfiguration {
     @Bean
     public Docket haloDefaultApi() {
         log.debug("Doc disabled: [{}]", haloProperties.getDocDisabled());
+        // TODO Build with different security configuration
         return buildApiDocket("run.halo.app.portal.api",
                 "run.halo.app.web.controller.portal.api",
                 "/api/**")
@@ -71,6 +72,7 @@ public class SwaggerConfiguration {
     @Bean
     public Docket haloAdminApi() {
         log.debug("Doc disabled: [{}]", haloProperties.getDocDisabled());
+        // TODO Build with different security configuration
         return buildApiDocket("run.halo.app.admin",
                 "run.halo.app.web.controller.admin",
                 "/admin/api/**")
@@ -119,7 +121,7 @@ public class SwaggerConfiguration {
     private SecurityContext securityContext() {
         return SecurityContext.builder()
                 .securityReferences(defaultAuth())
-                .forPaths(PathSelectors.regex("/api/.*"))
+                .forPaths(PathSelectors.regex("/admin/api/.*"))
                 .build();
     }
 
diff --git a/src/main/java/run/halo/app/security/filter/AdminAuthenticationFilter.java b/src/main/java/run/halo/app/security/filter/AdminAuthenticationFilter.java
index 1ac040770..a94708862 100644
--- a/src/main/java/run/halo/app/security/filter/AdminAuthenticationFilter.java
+++ b/src/main/java/run/halo/app/security/filter/AdminAuthenticationFilter.java
@@ -110,6 +110,7 @@ public class AdminAuthenticationFilter extends OncePerRequestFilter {
         if (StringUtils.isNotBlank(token)) {
 
             // Valid the token
+            // TODO Add key prefix
             Optional<String> userDetailOptional = cacheStore.get(token);
 
             if (!userDetailOptional.isPresent()) {
diff --git a/src/main/resources/application-dev.yaml b/src/main/resources/application-dev.yaml
index b1d3a0f5a..04eba3974 100755
--- a/src/main/resources/application-dev.yaml
+++ b/src/main/resources/application-dev.yaml
@@ -38,6 +38,7 @@ spring:
     hibernate:
       ddl-auto: update
     show-sql: true
+    open-in-view: false
   servlet:
     multipart:
       max-file-size: 10MB
diff --git a/src/main/resources/application.yaml b/src/main/resources/application.yaml
index 278c96e86..e6ca2ba0d 100755
--- a/src/main/resources/application.yaml
+++ b/src/main/resources/application.yaml
@@ -40,6 +40,7 @@ spring:
     hibernate:
       ddl-auto: update
     show-sql: false
+    open-in-view: false
   servlet:
     multipart:
       max-file-size: 10MB