From aa0a5b96abb24f0262ae84eedd49b86c8e42c69b Mon Sep 17 00:00:00 2001
From: Stillglade <stillglade@hotmail.com>
Date: Wed, 28 Jan 2015 09:35:27 -0500
Subject: [PATCH] SEC-2832: Update request attributes with new CsrfToken

---
 .../security/web/csrf/CsrfAuthenticationStrategy.java         | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/web/src/main/java/org/springframework/security/web/csrf/CsrfAuthenticationStrategy.java b/web/src/main/java/org/springframework/security/web/csrf/CsrfAuthenticationStrategy.java
index af6ac23428..a1d0170380 100644
--- a/web/src/main/java/org/springframework/security/web/csrf/CsrfAuthenticationStrategy.java
+++ b/web/src/main/java/org/springframework/security/web/csrf/CsrfAuthenticationStrategy.java
@@ -56,6 +56,8 @@ public final class CsrfAuthenticationStrategy implements
             CsrfToken newToken = this.csrfTokenRepository.generateToken(request);
             this.csrfTokenRepository.saveToken(null, request, response);
             this.csrfTokenRepository.saveToken(newToken, request, response);
+            request.setAttribute(CsrfToken.class.getName(), newToken);
+            request.setAttribute(newToken.getParameterName(), newToken);
         }
     }
-}
\ No newline at end of file
+}