Skip to content

Issues: spring-projects/spring-security

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts
0 Open 685 Closed
0 Open 685 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

OpenSaml4AuthenticationProvider.class at spring-security-saml2-service-provider v5.8.14 compiled for jdk11 status: invalid An issue that we don't feel is valid type: bug A general bug
#15765 by goyocasero was closed Sep 9, 2024
@marcusdacoregio
1
MethodAuthorizationDeniedHandler should allow access to the returnObject on PostAuthorize status: invalid An issue that we don't feel is valid
#15712 by rwinch was closed Aug 30, 2024
@rwinch
1
SpringSessionBackedReactiveSessionRegistry removeSessionInformation hasn't been implemented status: invalid An issue that we don't feel is valid type: bug A general bug
#15627 by dreamstar-enterprises was closed Aug 27, 2024
@marcusdacoregio
1
Dynamic register SecurityFilterChain for: stackoverflow A question that's better suited to stackoverflow.com status: invalid An issue that we don't feel is valid
#15423 by leshalv was closed Jul 15, 2024
@marcusdacoregio
2
OAuth2AuthorizationCodeGrantFilter erroneously consumes POST request body with multipart/form-data in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: invalid An issue that we don't feel is valid type: bug A general bug
#15397 by LaCoCa was closed Aug 5, 2024
@sjohnr
10
authorizeHttpRequests requestMatchers should support both .authenticated and .access in the same config status: invalid An issue that we don't feel is valid type: enhancement A general enhancement
#15300 by abccbaandy was closed Jul 1, 2024
@marcusdacoregio
3
Oauth2 maximumSessions did not work in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: invalid An issue that we don't feel is valid type: bug A general bug
#15194 by DucNguyenVan was closed Jun 18, 2024
@sjohnr
3
SpringSecurityCoreVersion.SERIAL_VERSION_UID is wrong in Spring Security 6.3 status: invalid An issue that we don't feel is valid
#15154 by yu-shiba was closed May 24, 2024
@marcusdacoregio
2
suthatthongchuea status: invalid An issue that we don't feel is valid
#15121 by Tae1998 was closed May 21, 2024
@jzheaux
Update Antora UI Spring to v0.4.15 status: invalid An issue that we don't feel is valid
#15110 by github-actions bot was closed May 20, 2024 Loading…
@marcusdacoregio
Update Antora UI Spring to v0.4.15 status: invalid An issue that we don't feel is valid
#15109 by github-actions bot was closed May 20, 2024 Loading…
@marcusdacoregio
Update Antora UI Spring to v0.4.15 status: invalid An issue that we don't feel is valid
#15107 by github-actions bot was closed May 20, 2024 Loading…
@marcusdacoregio
Update Antora UI Spring to v0.4.15 status: invalid An issue that we don't feel is valid
#15108 by github-actions bot was closed May 20, 2024 Loading…
@marcusdacoregio
Ineffective CSRF Protection for SPAs as suggested by the Official Docs? in: docs An issue in Documentation or samples status: invalid An issue that we don't feel is valid type: bug A general bug
#15092 by ptrckkk was closed May 23, 2024
@sjohnr
3
HttpSessionSecurityContextRepository used for AbstractPreAuthenticatedProcessingFilter status: invalid An issue that we don't feel is valid
#15041 by cristibozga was closed May 23, 2024
@marcusdacoregio
1
jpms spring-security-rsa in: crypto An issue in spring-security-crypto status: invalid An issue that we don't feel is valid type: enhancement A general enhancement
#15035 by xenoterracide was closed May 10, 2024
@marcusdacoregio
8
Stop increasing serialVersionUIDs with every minor version status: invalid An issue that we don't feel is valid
#15015 by christopher-thumberger-whizus was closed May 9, 2024
@marcusdacoregio
2
Unintuitive behavior of multiple servlet contexts and HttpSecurity#securityMatcher pattern in: docs An issue in Documentation or samples status: invalid An issue that we don't feel is valid type: enhancement A general enhancement
#15004 by arvyy was closed May 30, 2024
@sjohnr
5
Tokens for Client Credentials grant type should be cached only based on clientRegistrationId in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: invalid An issue that we don't feel is valid type: enhancement A general enhancement
#14991 by pzgadzaj-equinix was closed May 13, 2024
@sjohnr
7
WebSessionServerOAuth2AuthorizedClientRepository throws NPE when session is null status: invalid An issue that we don't feel is valid type: bug A general bug
#14975 by akovalyev was closed May 2, 2024
1
@sjohnr
1
AntPathRequestMatcher and permitAll no longer work as expected. in: config An issue in spring-security-config status: invalid An issue that we don't feel is valid type: bug A general bug
#14956 by kelseyh was closed Apr 26, 2024
@jzheaux
3
When token expires_in is less then 62 seconds two requests are made instead of 1 status: invalid An issue that we don't feel is valid type: bug A general bug
#14943 by ghost was closed Apr 25, 2024
@sjohnr
3
Support Certificate-Bound (POP) JWT Access Token Validation (Reactive) in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: invalid An issue that we don't feel is valid type: enhancement A general enhancement
#14887 by jgrandja was closed Apr 16, 2024
@jgrandja
2
cors reference documentation seems incomplete/innacurate in: docs An issue in Documentation or samples status: invalid An issue that we don't feel is valid type: bug A general bug
#14852 by xenoterracide was closed Jun 14, 2024
@sjohnr
6
token verification process issues status: invalid An issue that we don't feel is valid type: bug A general bug
#14824 by chengweng was closed Apr 1, 2024
@marcusdacoregio
2
ProTip! Updated in the last three days: updated:>2024-10-08.