Skip to content

Issues: spring-projects/spring-security

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

891 Open 11,117 Closed
891 Open 11,117 Closed
Author
Filter by author
Label
Filter by label
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Milestones
Filter by milestone
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

WebSessionServerOAuth2AuthorizedClientRepository throws NPE when session is null status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#14975 opened Apr 27, 2024 by akovalyev
http.authorizeHttpRequests((authorize) -> authorize.requestMatchers( "/websocket/**").permitAll()); Not working status: waiting-for-feedback We need additional information before we can continue
#14971 opened Apr 26, 2024 by charankavuri
1
AuthorizationManagerAfterMethodInterceptor custom annotations and aspecj support status: waiting-for-feedback We need additional information before we can continue
#14970 opened Apr 26, 2024 by mira-silhavy
@jzheaux
1
Reactive Security OAuth2 client doesn't propagate traces and baggage's in Spring Boot 3 status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#14946 opened Apr 23, 2024 by DaceKonn
Revisit SAML 2.0 Service Provider Documentation
#14944 opened Apr 22, 2024 by jzheaux
@jzheaux
SAML Authentication Issue with Simultaneous User Logins in: saml2 An issue in SAML2 modules status: waiting-for-feedback We need additional information before we can continue
#14932 opened Apr 19, 2024 by siddharth-78
@jzheaux
1
Failure to build in: build An issue in the build status: waiting-for-feedback We need additional information before we can continue
#14930 opened Apr 19, 2024 by taxuexunshang
2
Support RFC9449 - DPoP Authentication scheme status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#14915 opened Apr 16, 2024 by babisRoutis
LogoutConfigurer forces POST even if CSRF is disabled for /logout status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#14913 opened Apr 15, 2024 by erizzo
DelegatingSecurityContextTaskExecutor / DelegatingSecurityContextRunnable / DelegatingSecurityContextCallable should provide extension points in: core An issue in spring-security-core status: waiting-for-feedback We need additional information before we can continue
#14911 opened Apr 15, 2024 by tkrah
@jzheaux
5
Add Spring Session support to OIDC Back-Channel Logout in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#14904 opened Apr 13, 2024 by pzgadzaj-equinix
1
Support Certificate-Bound (POP) Opaque Access Token Validation in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#14888 opened Apr 11, 2024 by jgrandja
5
Endless Authentication Loop with ActiveDirectoryLdapAuthenticationProvider on Incorrect Password status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#14886 opened Apr 11, 2024 by juanmarques
Signature of Assertion from issuer was not valid and invalid destination for SAML response by multiple simultaneous login status: waiting-for-feedback We need additional information before we can continue
#14885 opened Apr 11, 2024 by nojanbakh
@jzheaux
1
Update Documentation about CAS Authentication status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#14884 opened Apr 11, 2024 by bnasslahsen
Upgrade nimbus-jose-jwt:jar to 9.37.3 status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#14879 opened Apr 10, 2024 by przem
1
On formLogin -> authenticationSuccessHandler -> new RedirectServerAuthenticationSuccessHandler("/location") fails redirect status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#14872 opened Apr 9, 2024 by hth
2
Websocket XHR fallbacks get IllegalStateException: Cannot create a session after the response has been committed upgrading to Boot 3.2.7 in: saml2 An issue in SAML2 modules status: feedback-provided Feedback has been provided
#14864 opened Apr 8, 2024 by stnor
@jzheaux
6
Support Expressions in Method Authorization Denied Handlers in: core An issue in spring-security-core type: enhancement A general enhancement
#14857 opened Apr 5, 2024 by marcusdacoregio
1
@marcusdacoregio
Wrong information for RequestCacheAwareFilter in the Spring Security documentation. in: docs An issue in Documentation or samples status: ideal-for-contribution An issue that we actively are looking for someone to help us with type: bug A general bug
#14855 opened Apr 5, 2024 by angel-gruevski
2
cors reference documentation seems incomplete/innacurate status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#14852 opened Apr 5, 2024 by xenoterracide
5
AuthorizationManager should support returning an AuthorizationResult status: ideal-for-contribution An issue that we actively are looking for someone to help us with type: enhancement A general enhancement
#14843 opened Apr 4, 2024 by jzheaux
1
reference documentation dark mode isn't rendering images properly in: docs An issue in Documentation or samples type: bug A general bug
#14834 opened Apr 3, 2024 by xenoterracide 5.8.13
@jzheaux
2
Add DelegatingServerLogoutSuccessHandler in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#14813 opened Mar 27, 2024 by CrazyParanoid
1
@jzheaux
3
Support for OpenID Connect Session Management session_state parameter in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#14812 opened Mar 27, 2024 by benba
@sjohnr
1
ProTip! Exclude everything labeled bug with -label:bug.