Skip to content

Pull requests: spring-projects/spring-security

New pull request New
53 Open 4,530 Closed
53 Open 4,530 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Propagate Authorities From Previous Factors
#17790 opened Aug 21, 2025 by jzheaux Loading…
Make NimbusJwtDecoder.withJwkSetUri populate default algorithms from JWK Set in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#17788 opened Aug 21, 2025 by therepanic Loading…
1
@jzheaux
2
Add Multi-factor Authentication Support
#17775 opened Aug 19, 2025 by jzheaux Draft
Fix inconsistent OAuth2 login redirect URI action in MVC stack status: waiting-for-triage An issue we've not yet triaged
#17770 opened Aug 19, 2025 by chanbinme Loading…
1
Add XML configuration guidance to deprecation warnings status: waiting-for-triage An issue we've not yet triaged
#17753 opened Aug 17, 2025 by khj68 Loading…
1
Added the ability to pass in a parameter when using JwtIssuerAuthenticationManagerResolver status: waiting-for-triage An issue we've not yet triaged
#17748 opened Aug 16, 2025 by jsight Loading…
Polish EnableWeb(Flux)Security javadoc status: waiting-for-triage An issue we've not yet triaged
#17705 opened Aug 14, 2025 by ngocnhan-tran1996 Loading…
1
Prevent caching of non-document requests in HttpSessionRequestCache in: web An issue in web modules (web, webmvc) status: waiting-for-feedback We need additional information before we can continue type: enhancement A general enhancement
#17687 opened Aug 11, 2025 by therepanic Loading…
1
@jzheaux
3
Allow authenticationManagerResolver to take precedence over jwt/opaqueToken status: waiting-for-triage An issue we've not yet triaged
#17676 opened Aug 10, 2025 by academey Loading…
1
Fix OAuth2 client-secret encoding with Base64 padding status: waiting-for-triage An issue we've not yet triaged
#17674 opened Aug 9, 2025 by academey Loading…
1 of 4 tasks
1
Add AuthorizationManagerFactory
#17673 opened Aug 8, 2025 by sjohnr Loading…
44
Align NimbusJwtDecoder HTTP timeout defaults with Nimbus by setting to 500ms in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#17669 opened Aug 7, 2025 by frido37 Loading…
@jzheaux
6
Fix ChannelProcessingFilter to skip decision if response already committed status: waiting-for-triage An issue we've not yet triaged
#17668 opened Aug 7, 2025 by therepanic Loading…
1
1
Warning when EnableTransactionManagement has lower precedence than EnableMethodSecurity status: blocked An issue that's blocked on an external project change
#17665 opened Aug 5, 2025 by yybmion Loading…
1
@jzheaux
1
Validate account status in OneTimeTokenAuthenticationProvider status: waiting-for-triage An issue we've not yet triaged
#17656 opened Aug 2, 2025 by therepanic Loading…
1
4
Add Referrer-Policy header to default security headers status: waiting-for-triage An issue we've not yet triaged
#17606 opened Jul 23, 2025 by therepanic Loading…
1
Remove PortResolver status: waiting-for-triage An issue we've not yet triaged
#17524 opened Jul 14, 2025 by kse-music Loading…
1
Add createdTime field to SessionInformation in: core An issue in spring-security-core type: enhancement A general enhancement
#17513 opened Jul 13, 2025 by therepanic Loading…
1
@jgrandja
3
PKCE configuration - enabled by default in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: breaks-passivity A change that breaks passivity with the previous release
#17507 opened Jul 10, 2025 by rohan-naik07 Loading…
@jgrandja
13
Add lambda DSL method for featurePolicy status: waiting-for-triage An issue we've not yet triaged
#17492 opened Jul 7, 2025 by therepanic Loading…
1
2
Implement equals and hashCode in OidcIdToken status: waiting-for-triage An issue we've not yet triaged
#17485 opened Jul 4, 2025 by therepanic Loading…
1
2
Remove ACL access implementations in favor of AclPermissionEvaluator in: acl An issue in spring-security-acl status: blocked An issue that's blocked on an external project change type: breaks-passivity A change that breaks passivity with the previous release
#17475 opened Jul 3, 2025 by therepanic Loading…
1
@jzheaux
1
Change FilterBasedLdapUserSearch to use LdapClient status: waiting-for-triage An issue we've not yet triaged
#17384 opened Jun 29, 2025 by therepanic Loading…
1
Allow specifying a ServerAuthenticationConverter for x509() status: waiting-for-triage An issue we've not yet triaged
#17382 opened Jun 27, 2025 by blake-bauman Loading…
Allow multiple ServerLogoutHandler instances in ServerHttpSecurity in: config An issue in spring-security-config type: enhancement A general enhancement
#17381 opened Jun 27, 2025 by blake-bauman Loading… 7.0.x
@jzheaux
11
ProTip! Type g i on any issue or pull request to go back to the issue listing page.