Annotate Authentication classes as transient

Spring Security can be configured as `STATELESS`, which prevents `Authentication` tokens from being persisted across the board.

Introducing an annotation would make so that specific `Authentication` types could be considered stateless without needing to mark the entire application as stateless:

```java
@TransientAuthentication
public class MyTransientAuthenticationToken implements Authentication {
    // ...
}
```

With the above marker, `HttpSessionSecurityContextRepository` would ignore this token instead of storing it in the session.

Ensure that this annotation works as a meta-annotation as well as an inherited annotation.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

Annotate Authentication classes as transient #5481

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Annotate Authentication classes as transient #5481

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions