Remove Explicit CSRF Config from DeferHttpSessionTests

Issue gh-11764
This commit is contained in:
Rob Winch
2022-09-22 16:15:02 -05:00
parent 617353eaa8
commit 12a0ccf6de
2 changed files with 0 additions and 13 deletions

View File

@@ -32,8 +32,6 @@ import org.springframework.security.config.test.SpringTestContext;
import org.springframework.security.config.test.SpringTestContextExtension;
import org.springframework.security.web.DefaultSecurityFilterChain;
import org.springframework.security.web.FilterChainProxy;
import org.springframework.security.web.csrf.CsrfTokenRepository;
import org.springframework.security.web.csrf.HttpSessionCsrfTokenRepository;
import static org.mockito.ArgumentMatchers.anyBoolean;
import static org.mockito.Mockito.never;
@@ -78,7 +76,6 @@ public class DeferHttpSessionJavaConfigTests {
@Bean
DefaultSecurityFilterChain springSecurity(HttpSecurity http) throws Exception {
CsrfTokenRepository csrfRepository = new HttpSessionCsrfTokenRepository();
// @formatter:off
http
.authorizeHttpRequests((requests) -> requests
@@ -86,9 +83,6 @@ public class DeferHttpSessionJavaConfigTests {
)
.sessionManagement((sessions) -> sessions
.requireExplicitAuthenticationStrategy(true)
)
.csrf((csrf) -> csrf
.csrfTokenRepository(csrfRepository)
);
// @formatter:on
return http.build();