workaround fix for #116: disable spring boot error security filter

src/main/java/it/smartcommunitylab/aac/config/SecurityConfig.java

@@ -22,6 +22,8 @@
 import org.springframework.beans.factory.annotation.Autowired;
 import org.springframework.beans.factory.annotation.Qualifier;
 import org.springframework.beans.factory.annotation.Value;
+import org.springframework.beans.factory.config.BeanFactoryPostProcessor;
+import org.springframework.beans.factory.support.DefaultListableBeanFactory;
 import org.springframework.boot.context.properties.EnableConfigurationProperties;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
@@ -273,6 +275,20 @@ public void configure(HttpSecurity http) throws Exception {
 
     }
 
+    /*
+     * BUG hotfix: disable error filter because it doesn't work with dummyrequests
+     * and/or multiple filter chains TODO remove when upstream fixes the issue
+     * 
+     * https://github.com/spring-projects/spring-security/issues/11055#issuecomment-
+     * 1098061598
+     * 
+     */
+    @Bean
+    public static BeanFactoryPostProcessor removeErrorSecurityFilter() {
+        return beanFactory -> ((DefaultListableBeanFactory) beanFactory)
+                .removeBeanDefinition("errorPageSecurityInterceptor");
+    }
+
     @Bean
     public CompositeLogoutHandler logoutHandler() {
         List<LogoutHandler> handlers = new ArrayList<>();