From 7037dd899940ab03a520d133c4bdf03ef858170a Mon Sep 17 00:00:00 2001
From: Daeho Kwon <trewq231@naver.com>
Date: Tue, 4 Feb 2025 20:39:29 +0900
Subject: [PATCH] Replace dynamic error message with static "Access Denied"
 Closes gh-16514

Signed-off-by: Daeho Kwon <trewq231@naver.com>
---
 .../web/reactive/server/SecurityMockServerConfigurersTests.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/test/src/test/java/org/springframework/security/test/web/reactive/server/SecurityMockServerConfigurersTests.java b/test/src/test/java/org/springframework/security/test/web/reactive/server/SecurityMockServerConfigurersTests.java
index 20ec9444e39..9335e0781af 100644
--- a/test/src/test/java/org/springframework/security/test/web/reactive/server/SecurityMockServerConfigurersTests.java
+++ b/test/src/test/java/org/springframework/security/test/web/reactive/server/SecurityMockServerConfigurersTests.java
@@ -136,7 +136,7 @@ public void csrfWhenMutateWithThenDisablesCsrf() {
 			.expectStatus()
 			.isEqualTo(HttpStatus.FORBIDDEN)
 			.expectBody()
-			.consumeWith((b) -> assertThat(new String(b.getResponseBody())).contains("CSRF"));
+			.consumeWith((b) -> assertThat(new String(b.getResponseBody())).contains("Access Denied"));
 		this.client.mutateWith(SecurityMockServerConfigurers.csrf()).post().exchange().expectStatus().isOk();
 	}