Can't create CSRF token with Spring Security

Question

I am using Spring Security 3.2.3 in my Spring MVC application and getting some unexpected behavior.

According to the documentation here, it should be possible to us

Answer 1

Your issue is a different one, just stumbled across this one as well and it took me several hours to figure out the cause. The cause for the issue described by you is that you did not enable csrf support within your spring-security.xml

This little snippet needs to go into your security-config.xml:

    
    

    
    
    
    
    
    
    
    
    
    

    
    

    
    

....
...
..
.

Save time by configuring this correctly...

Cheerio, Flo!