Skip to content

Issues: spring-projects/spring-security

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

892 Open 11,334 Closed
892 Open 11,334 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Customize authentication converter (JwtAuthenticationConverter) in JwtIssuerReactiveAuthenticationManagerResolver status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#15473 opened Jul 25, 2024 by singhbaljit
Allow for extending OAuth2AuthorizedClient with additional parameters in the code grant flow status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#15470 opened Jul 24, 2024 by stackfull
The additionalParameters array parameter of OAuth2AuthorizationRequest causes the authorizationRequestUri to be incorrect status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#15468 opened Jul 24, 2024 by chenzhenjia
Support jwt in introspection response status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#15467 opened Jul 23, 2024 by CrazyParanoid
Discrepancy in spring security tutorial concerning how bcrypt password strings structure looks like status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#15466 opened Jul 23, 2024 by owolabiezekiel
4
ReactiveOAuth2AuthorizedClientManagerRegistrar is not being autoconfigured status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#15461 opened Jul 23, 2024 by dreamstar-enterprises
1
Illegal group reference in: crypto An issue in spring-security-crypto status: feedback-provided Feedback has been provided
#15458 opened Jul 22, 2024 by itl-coder
3
Consider allowing to hide UserNotFoundException in PreAuthenticatedAuthenticationProvider in: core An issue in spring-security-core status: feedback-provided Feedback has been provided type: enhancement A general enhancement
#15450 opened Jul 22, 2024 by b1ueskydragon
@jzheaux
2
Consider removing generics from AuthorizationRequestRepository in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: breaks-passivity A change that breaks passivity with the previous release type: enhancement A general enhancement
#15426 opened Jul 15, 2024 by sjohnr 7.0.x
1
2
Spring do not support 401 unauthorized responce by default status: feedback-reminder We've sent a reminder that we need additional information before we can continue status: waiting-for-feedback We need additional information before we can continue type: bug A general bug
#15424 opened Jul 15, 2024 by ybaidiuk
@sjohnr
2
Support doing a Token Exchange of access token from OIDC login in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: feedback-provided Feedback has been provided type: enhancement A general enhancement
#15408 opened Jul 12, 2024 by dalbani
@sjohnr
2
Introduce UserAuthorities in: core An issue in spring-security-core type: enhancement A general enhancement
#15406 opened Jul 12, 2024 by marcusdacoregio 6.4.0-M2
1
@marcusdacoregio
Improve documentation about CredentialsContainer in: docs An issue in Documentation or samples status: ideal-for-contribution An issue that we actively are looking for someone to help us with type: enhancement A general enhancement
#15398 opened Jul 11, 2024 by marcusdacoregio
@marcusdacoregio
OAuth2AuthorizationCodeGrantFilter erroneously consumes POST request body with multipart/form-data in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: feedback-provided Feedback has been provided type: bug A general bug
#15397 opened Jul 11, 2024 by LaCoCa
@sjohnr
2
Add XML support for OIDC backchannel logout in: saml2 An issue in SAML2 modules type: enhancement A general enhancement
#15393 opened Jul 10, 2024 by pa-ro-dev
Horizontal Scaling Issue with XorCsrfTokenRequestAttributeHandler status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#15385 opened Jul 9, 2024 by jarekkar
Webservice returns invalid response containing Empty Headers (":") in: web An issue in web modules (web, webmvc) type: bug A general bug
#15384 opened Jul 9, 2024 by david0
@jzheaux
2
Response header Vary since Spring Security 6.2.0 in: web An issue in web modules (web, webmvc) type: bug A general bug
#15378 opened Jul 8, 2024 by renetrefft 6.2.6
1
@marcusdacoregio
4
OpenSaml4AuthenticationProvider : Handle response not signed but assertions signed in: saml2 An issue in SAML2 modules status: waiting-for-feedback We need additional information before we can continue
#15368 opened Jul 7, 2024 by acothenet
@jzheaux
1
PreAuthorize not working on Services with an Interface, and also still not working on Kotlin Co-routines in: core An issue in spring-security-core status: waiting-for-feedback We need additional information before we can continue type: bug A general bug
#15367 opened Jul 5, 2024 by dreamstar-enterprises
@jzheaux
1
@PreAuthorize on controller class also applies method security to @ExceptionHandler methods in Spring Security 6.3.1. in: core An issue in spring-security-core type: bug A general bug
#15352 opened Jul 3, 2024 by MartinHaeusler
@marcusdacoregio
1
"CurrentSecurityContextArgumentResolver" does not support property population of different types. in: web An issue in web modules (web, webmvc) status: feedback-reminder We've sent a reminder that we need additional information before we can continue status: waiting-for-feedback We need additional information before we can continue
#15351 opened Jul 3, 2024 by milo-xiaomeng
2
Spring Webflex - reactor core exception - accessing endpoint with http: basic auth in: web An issue in web modules (web, webmvc) status: feedback-provided Feedback has been provided
#15348 opened Jul 2, 2024 by dreamstar-enterprises
2
OIDC logout not working for JPA/JDBC OAuth2AuthorizationService because DefaultSaml2AuthenticatedPrincipal does not implement equality status: feedback-provided Feedback has been provided type: bug A general bug
#15346 opened Jul 2, 2024 by limburgie
2
Antora documentation build fails on Windows; arguments not properly passed to gradlew in: build An issue in the build type: bug A general bug
#15326 opened Jun 30, 2024 by Marcono1234
4
ProTip! Mix and match filters to narrow down what you’re looking for.