Version 3.4.2
- [spring-security]
- fixes a NPE bug introduced in the
HybridJwtDecoder
when the incoming request does not
containx-forwarded-client-cert
header SecurityContextAutoConfiguration
which synchronises all SecurityContexts is now enabled by default. To disable it
set thesap.spring.security.hybrid.sync_securitycontext
spring property to false
- fixes a NPE bug introduced in the