From 40f687aa78412bcfeae18e3b40c5790e96719685 Mon Sep 17 00:00:00 2001
From: Rob Winch <rwinch@gopivotal.com>
Date: Wed, 9 Mar 2016 14:47:41 -0600
Subject: [PATCH] Improve CSRF missing error message

Fixes gh-3738
---
 .../security/web/csrf/MissingCsrfTokenException.java            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/web/src/main/java/org/springframework/security/web/csrf/MissingCsrfTokenException.java b/web/src/main/java/org/springframework/security/web/csrf/MissingCsrfTokenException.java
index aa11cb3c9d..c3cc77ac73 100644
--- a/web/src/main/java/org/springframework/security/web/csrf/MissingCsrfTokenException.java
+++ b/web/src/main/java/org/springframework/security/web/csrf/MissingCsrfTokenException.java
@@ -25,6 +25,6 @@ package org.springframework.security.web.csrf;
 public class MissingCsrfTokenException extends CsrfException {
 
 	public MissingCsrfTokenException(String actualToken) {
-		super("Expected CSRF token not found. Has your session expired?");
+		super("Could not verify the provided CSRF token because your session was not found.");
 	}
 }
\ No newline at end of file