Lukas Herman (Migrated from SEC-1439) said:
Custom SecurityContextRepository implementation relies on HttpRequestResponseHolder parameter in method
public SecurityContext loadContext(HttpRequestResponseHolder requestResponseHolder).
Since getters and setters of HttpRequestResponseHolder properties are not public, pluggable repository mechanism is broken.
Luke Taylor said:
Yes, thanks for pointing this out. I've made the changes in the 3.0.x and master branches.