-
Notifications
You must be signed in to change notification settings - Fork 5.9k
Issues: spring-projects/spring-security
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Author
Label
Projects
Milestones
Assignee
Sort
Issues list
OpenSaml4AuthenticationProvider.class at spring-security-saml2-service-provider v5.8.14 compiled for jdk11
status: invalid
An issue that we don't feel is valid
type: bug
A general bug
#15765
by goyocasero
was closed Sep 9, 2024
MethodAuthorizationDeniedHandler should allow access to the returnObject on PostAuthorize
status: invalid
An issue that we don't feel is valid
#15712
by rwinch
was closed Aug 30, 2024
SpringSessionBackedReactiveSessionRegistry removeSessionInformation hasn't been implemented
status: invalid
An issue that we don't feel is valid
type: bug
A general bug
#15627
by dreamstar-enterprises
was closed Aug 27, 2024
Dynamic register SecurityFilterChain
for: stackoverflow
A question that's better suited to stackoverflow.com
status: invalid
An issue that we don't feel is valid
#15423
by leshalv
was closed Jul 15, 2024
OAuth2AuthorizationCodeGrantFilter erroneously consumes POST request body with multipart/form-data
in: oauth2
An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose)
status: invalid
An issue that we don't feel is valid
type: bug
A general bug
#15397
by LaCoCa
was closed Aug 5, 2024
authorizeHttpRequests requestMatchers should support both .authenticated and .access in the same config
status: invalid
An issue that we don't feel is valid
type: enhancement
A general enhancement
#15300
by abccbaandy
was closed Jul 1, 2024
Oauth2 maximumSessions did not work
in: oauth2
An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose)
status: invalid
An issue that we don't feel is valid
type: bug
A general bug
#15194
by DucNguyenVan
was closed Jun 18, 2024
SpringSecurityCoreVersion.SERIAL_VERSION_UID is wrong in Spring Security 6.3
status: invalid
An issue that we don't feel is valid
#15154
by yu-shiba
was closed May 24, 2024
suthatthongchuea
status: invalid
An issue that we don't feel is valid
#15121
by Tae1998
was closed May 21, 2024
Update Antora UI Spring to v0.4.15
status: invalid
An issue that we don't feel is valid
#15110
by github-actions
bot
was closed May 20, 2024
Loading…
Update Antora UI Spring to v0.4.15
status: invalid
An issue that we don't feel is valid
#15109
by github-actions
bot
was closed May 20, 2024
Loading…
Update Antora UI Spring to v0.4.15
status: invalid
An issue that we don't feel is valid
#15107
by github-actions
bot
was closed May 20, 2024
Loading…
Update Antora UI Spring to v0.4.15
status: invalid
An issue that we don't feel is valid
#15108
by github-actions
bot
was closed May 20, 2024
Loading…
Ineffective CSRF Protection for SPAs as suggested by the Official Docs?
in: docs
An issue in Documentation or samples
status: invalid
An issue that we don't feel is valid
type: bug
A general bug
#15092
by ptrckkk
was closed May 23, 2024
HttpSessionSecurityContextRepository used for AbstractPreAuthenticatedProcessingFilter
status: invalid
An issue that we don't feel is valid
#15041
by cristibozga
was closed May 23, 2024
jpms spring-security-rsa
in: crypto
An issue in spring-security-crypto
status: invalid
An issue that we don't feel is valid
type: enhancement
A general enhancement
#15035
by xenoterracide
was closed May 10, 2024
Stop increasing serialVersionUIDs with every minor version
status: invalid
An issue that we don't feel is valid
#15015
by christopher-thumberger-whizus
was closed May 9, 2024
Unintuitive behavior of multiple servlet contexts and HttpSecurity#securityMatcher pattern
in: docs
An issue in Documentation or samples
status: invalid
An issue that we don't feel is valid
type: enhancement
A general enhancement
#15004
by arvyy
was closed May 30, 2024
Tokens for Client Credentials grant type should be cached only based on clientRegistrationId
in: oauth2
An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose)
status: invalid
An issue that we don't feel is valid
type: enhancement
A general enhancement
#14991
by pzgadzaj-equinix
was closed May 13, 2024
WebSessionServerOAuth2AuthorizedClientRepository throws NPE when session is null
status: invalid
An issue that we don't feel is valid
type: bug
A general bug
#14975
by akovalyev
was closed May 2, 2024
AntPathRequestMatcher and permitAll no longer work as expected.
in: config
An issue in spring-security-config
status: invalid
An issue that we don't feel is valid
type: bug
A general bug
#14956
by kelseyh
was closed Apr 26, 2024
When token expires_in is less then 62 seconds two requests are made instead of 1
status: invalid
An issue that we don't feel is valid
type: bug
A general bug
#14943
by ghost
was closed Apr 25, 2024
Support Certificate-Bound (POP) JWT Access Token Validation (Reactive)
in: oauth2
An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose)
status: invalid
An issue that we don't feel is valid
type: enhancement
A general enhancement
#14887
by jgrandja
was closed Apr 16, 2024
cors reference documentation seems incomplete/innacurate
in: docs
An issue in Documentation or samples
status: invalid
An issue that we don't feel is valid
type: bug
A general bug
#14852
by xenoterracide
was closed Jun 14, 2024
token verification process issues
status: invalid
An issue that we don't feel is valid
type: bug
A general bug
#14824
by chengweng
was closed Apr 1, 2024
Previous Next
ProTip!
Updated in the last three days: updated:>2024-10-08.