Bug in SecurityConfig GrantedAuthoritiesMapper only looks at the first item in authorities

[mrdapotts]

I fund your code while looking at issues raised on stack overflow I have also been trying to get keycloak to work with webflux. In my case I have 5 items in my authorities list, your code only considers the first item. You need to use something like

for(Object authority:authorities) {

To scan the entire list of authorities.