root/resilient#9 Passou a redireccionar login SAML2 com sucesso para o

sucess-url, quando definido

src/main/java/com/oguerreiro/resilient/security/saml2/Saml2AuthenticationHandler.java

@@ -162,21 +162,14 @@ public class Saml2AuthenticationHandler implements AuthenticationSuccessHandler,
         userdetails.getAuthorities());
     SecurityContextHolder.getContext().setAuthentication(newAuthentication);
 
-    // This is a sugar-code when in development environment. 
+    // Send to success URL, if configured
-    if (isDevProfileActive()) {
-      // If this is a mock-idp, it can provide the parameter 'SAMLDevEnvironmentUrl' 
-      //  that gives the base URL to use. This is because in DEV mode usually the 
-      //  Angular side runs in localhost:42000 but server-side is in localhost:8080.
-      //  Without this, SAMLv2 authentication would end up in error redirecting the user to 
-      //  localhost:8080 (NOT the client-side)
-      // In PROD we don't need this, because the app url is the same
     String successUrl = resilientSaml2Properties.getSuccessUrl();
-
     if (successUrl != null && !successUrl.isBlank()) {
+      // This is mandatory in DEV environment. Optional in PROD because the app url is the same.
+      // Even so, I think its a good practice to define the success url
       response.sendRedirect(successUrl);
     }
   }
-  }
 
   private void invalidateLogin(HttpServletRequest request, HttpServletResponse response) throws IOException {
     // Clear context and invalidate session