This must be a common problem but I didn't find a solid example in the forum. I will contrive the example to simplify the use case.
On our client, we allow the user to opt-in to a role. We then make a call to the server to add the role to the user's record. How would I go about "refreshing" the user's credentials in the SecurityContextHolder without requiring the user to sign out and then back in?