mirror of
https://github.com/spring-projects/spring-security.git
synced 2026-05-10 09:31:40 +00:00
25d1f49d84
Resource Server doesn't need to set the session policy for the application to STATELESS since it can rely on the SessionManagementFilter ignoring token's annotated with @Transient, which a JwtAuthenticationToken is. Fixes: gh-5759