This commit updates security configuration in samples to:
- use AuthorizationFilter instead of FilterSecurityInterceptor
- update session creation policy in REST sample
As of spring-projects/spring-security#11653, Spring Security's [at]Enable*Security annotations are not meta annotated with [at]Configuration which breaks some of our tests.
This commit adds missing [at]Configuration annotations where needed.
Closes gh-2118
