I have SAML configured to auth users. We recently decided to turn on CSRF protection, but discovered it prevents anyone from authenticating via SAML. The securityRealm/loginFinished page produces a "missing CSRF crumb" error.