Stephane
Hi Matt,
A very good and useful article!! In order to make our application more secure, we are trying to enable the CSRF protection with a Spring Boot back-end and an Angular application for the front-end based on what you wrote. However we are getting the following error “Could not verify the provided CSRF token because your session was not found in spring security”. What could be the reason? Could different sub-domains between the two compact have an impact?
Thank you in advance for your answer.
-Stephane