There is a number of configured bypasses for the CSRFTokenFilter. Within
MAGNOLIA-8210 mgeljic brought up the idea to intercept login redirects for getting rid of some of these bypasses. Within this ticket we should:
- Clarify the approach envisioned by mgeljic
- Implement a POC
- Productise the POC if it bring enough value
Implementation note: may we can use security callbacks?