[keycloak-dev] SpringSecurity adapter best practices