diff --git a/src/main/java/com/example/fercoganbackend/configuration/SecurityConfig.java b/src/main/java/com/example/fercoganbackend/configuration/SecurityConfig.java
index 7c04c9c..4382d84 100644
--- a/src/main/java/com/example/fercoganbackend/configuration/SecurityConfig.java
+++ b/src/main/java/com/example/fercoganbackend/configuration/SecurityConfig.java
@@ -37,7 +37,8 @@ public class SecurityConfig {
                 .csrf(AbstractHttpConfigurer::disable)
                 .authorizeHttpRequests(auth -> auth
                         .requestMatchers("/auth/**").permitAll()
-                        .requestMatchers("/favicon.ico", "/error", "/static/**", "/ws/contador/**", "contador/**", "/api/**").permitAll()
+                        .requestMatchers("/favicon.ico", "/error", "/static/**","contador/**", "/api/**").permitAll()
+                        .requestMatchers("/ws/contador/**").permitAll() // permitir WS sin auth
                         .requestMatchers("/admin/**").hasAnyAuthority("SUPER_USUARIO","ADMIN")
                         .anyRequest().authenticated()
                 )