Hi,
The ExceptionTranslationWebFilter doesn't check if the authentication object of the ReactiveSecurityContextHolder is an AnonymousAuthenticationToken, only is checking if the authentication object is not null, because of this always is going to redirect to the ServerAccessDeniedHandler instead of the ServerAuthenticationEntryPoint when is anonymous.
This can be reproduced configuring the anonymous web filter in the ServerHttpSecurity.
We expect to have the same behaviour defined in the ExceptionTranslationFilter (servlet).
Thanks.