Skip to content

Issues: spring-projects/spring-security

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

925 Open 11,612 Closed
925 Open 11,612 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Documentation of OpenSAML 5.x is not correct status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16191 opened Nov 30, 2024 by mathewm3
ObservationAuthorizationManager is not picking up custom MessageSource implementation status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16188 opened Nov 29, 2024 by deepaksorthiya
sms code status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16182 opened Nov 27, 2024 by Mustafa0888
Spring Security Auto-Configuration regression between Spring Boot 3.3.6 and 3.4.0 status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16181 opened Nov 27, 2024 by ecnabogs
s/write/right status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16178 opened Nov 27, 2024 by joshlong
1
Issue when using @AuthenticationPrincipal on interfaces status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16177 opened Nov 26, 2024 by K-e-l-v-i-n-12
Breaking Change after upgrading to 6.4.1 via Spring Boot 3.4.0 status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16174 opened Nov 26, 2024 by okohub
1
CookieCsrfTokenRepository uses Cookie#setAttribute() which breaks compatibility with Servlet API 5 status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16173 opened Nov 26, 2024 by acutus
The selectJwk method of NimbusJwtEncoder class should not throw Exception when jwks size great than one status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16170 opened Nov 26, 2024 by douxiaofeng99
DefaultSaml2AuthenticatedPrincipal does not define serialVersionUID status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16163 opened Nov 25, 2024 by OrangeDog
Support fullyAuthenticated in Kotlin authorizeHttpRequests in: config An issue in spring-security-config status: ideal-for-contribution An issue that we actively are looking for someone to help us with type: enhancement A general enhancement
#16162 opened Nov 25, 2024 by sgrimm
1
1
Saml response verfication inside Controller status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16160 opened Nov 25, 2024 by sasirekha98
OAuth2LoginAuthenticationFilter acts as an uber AuthenticationManager status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16142 opened Nov 21, 2024 by jarek-jpa
Consider using @Fallback instead of BeanDefinitionRegistryPostProcessor for OAuth2AuthorizedClientManager in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#16137 opened Nov 20, 2024 by sjohnr 6.5.x
@sjohnr
Improve startup validation of request matchers in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16135 opened Nov 20, 2024 by jzheaux 6.5.x
@jzheaux
1
[OAuth2] Misconfigured OAuth2LoginAuthenticationFilter when combining OAuth2 login and OAuth2 client configuration in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16105 opened Nov 15, 2024 by BWohlbrecht 6.2.9
@sjohnr
2
Should return www-authenticate even for "X-Requested-With: XMLHttpRequest" requests in: web An issue in web modules (web, webmvc) type: bug A general bug
#16103 opened Nov 15, 2024 by MartinEmrich
5
Add OpenTelemetry Span Creation for Spring Security Filters and Expose as Configurable Property status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16092 opened Nov 14, 2024 by Seifenn
Getting error as The response contained an InResponseTo attribute [] but no saved authentication request was found in saml2 in: saml2 An issue in SAML2 modules status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16091 opened Nov 14, 2024 by sasirekha98
@jzheaux
Bump version com.nimbusds:oauth2-oidc-sdk status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16089 opened Nov 14, 2024 by bostandyksoft
Consider making the constructor of OAuth2AccessToken.TokenType public in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#16086 opened Nov 13, 2024 by sjohnr 6.5.x
@sjohnr
Verification Options do not Return Saved Transports for Credentials in: web An issue in web modules (web, webmvc) status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16084 opened Nov 13, 2024 by Jyosua
@rwinch
1
OidcBackChannelLogoutWebFilter returns an error for unauthenticated ajax requests in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16073 opened Nov 12, 2024 by katya-tis
@jzheaux
1
OidcBackChannelLogoutWebFilter error response is not a correct JSON in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16072 opened Nov 12, 2024 by katya-tis
@jzheaux
3
Passkey Endpoints do not Honor .permitAll() in: web An issue in web modules (web, webmvc) status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16070 opened Nov 12, 2024 by Jyosua
@rwinch
ProTip! no:milestone will show everything without a milestone.