Skip to content

XML config does not apply request-handler-ref to CsrfAuthenticationStrategy #16801

New issue
New issue
Closed
Closed
XML config does not apply request-handler-ref to CsrfAuthenticationStrategy#16801
Assignees
sjohnr
Labels
in: configAn issue in spring-security-configtype: bugA general bug
Milestone
 
6.3.9
@sjohnr

Description

@sjohnr
sjohnr
opened on Mar 21, 2025

Describe the bug
CsrfBeanDefinitionParser does not apply the value of request-handler-ref to the bean definition of CsrfAuthenticationStrategy.

Note: By contrast, CsrfConfigurer does apply the configured CsrfTokenRequestHandler to the default CsrfAuthenticationStrategy.

Expected behavior
CsrfBeanDefinitionParser applies the value of request-handler-ref to the bean definition of CsrfAuthenticationStrategy.

Metadata

Metadata

Assignees

Labels

in: configAn issue in spring-security-configtype: bugA general bug

Type

No type

Projects

Spring Security Team

Status

Done

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions