Skip to content

Issues: spring-projects/spring-security

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

963 Open 11,710 Closed
963 Open 11,710 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Default Log In Page should always be generic message status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16484 opened Jan 24, 2025 by rwinch
One Time Token should not be created if user does not exist in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16483 opened Jan 24, 2025 by rwinch
5 of 6 tasks
@rwinch
Make WebAuthnAuthenticationTokenRequest Serializable in: web An issue in web modules (web, webmvc) type: bug A general bug
#16481 opened Jan 24, 2025 by jzheaux 6.4.3
@franticticktick
2
One Time Token Error Message in: web An issue in web modules (web, webmvc) type: bug A general bug
#16473 opened Jan 23, 2025 by danvega 6.4.3
@rwinch
1
ClientRegistrations class's OpenID Provider Configuration Validation does not conform to specification in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: waiting-for-feedback We need additional information before we can continue type: bug A general bug
#16460 opened Jan 21, 2025 by abchau
@sjohnr
2
SAML SSO Service preferred binding type from IDP metadata in: saml2 An issue in SAML2 modules status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16454 opened Jan 20, 2025 by codemasterover9000
@jzheaux
In the UsernamePasswordAuthenticationFilter, the authRequest is added as an attribute to the HttpServletRequest. in: core An issue in spring-security-core status: feedback-provided Feedback has been provided type: enhancement A general enhancement
#16444 opened Jan 19, 2025 by amm0124
@rwinch
2
Replace SpringUtils in DelegatingPasswordEncoder.UnmappedIdPasswordEncoder in: crypto An issue in spring-security-crypto type: enhancement A general enhancement
#16442 opened Jan 18, 2025 by ChristianHoesel
1
@sjohnr
3
ConcurrentsessionControlAuthenticationStrategy has a problem? SetMaximumSessions(1), how many logins are needed? in: web An issue in web modules (web, webmvc) status: feedback-provided Feedback has been provided type: enhancement A general enhancement
#16437 opened Jan 17, 2025 by Crazy-GrowUp
@sjohnr
2
Add serialize/deserialize PublicKeyCredentialCreationOptions support with ObjectMapper status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16434 opened Jan 16, 2025 by rwinch
1
Add serialize/deserialize PublicKeyCredentialRequestOptions support with ObjectMapper status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16433 opened Jan 16, 2025 by rwinch
1
Make PublicKeyCredentialCreationOptions Serializable status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16431 opened Jan 16, 2025 by rwinch
1
Simplify Specifying servletPath in the Java DSL in: config An issue in spring-security-config type: enhancement A general enhancement
#16430 opened Jan 16, 2025 by jzheaux 6.5.0-M2
@jzheaux
Add PathPatternRequestMatcher in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16429 opened Jan 16, 2025 by jzheaux 6.5.0-M2
@jzheaux
Prepare Request Matching for Spring Framework Changes in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16417 opened Jan 14, 2025 by jzheaux
8 tasks
6.5.x
@jzheaux
2
Display default login page with only one-time token login status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16414 opened Jan 14, 2025 by Kehrlann
OAuth2ResourceServerConfigurer#authenticationManagerResolver should override #jwt in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: ideal-for-contribution An issue that we actively are looking for someone to help us with type: enhancement A general enhancement
#16406 opened Jan 13, 2025 by jgrandja
@jzheaux
7
Error while extracting response for type [org.springframework.security.oauth2.core.endpoint.OAuth2AccessTokenResponse] status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16398 opened Jan 12, 2025 by yoav-klein
2
Add proper equals (and hashCode) methods to OAuth2AuthorizationRequest status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16394 opened Jan 10, 2025 by GrmpfNarf
ValidationContext is lost unexpectedly causing InResponseTo validation to fail in: saml2 An issue in SAML2 modules status: feedback-reminder We've sent a reminder that we need additional information before we can continue status: waiting-for-feedback We need additional information before we can continue
#16392 opened Jan 9, 2025 by tyler555g
@jzheaux
6
Consider Enabling PKCE for Authorization Code by Default
#16391 opened Jan 9, 2025 by rwinch 7.0.0-M1
Simplify support of username as a nested property
#16390 opened Jan 9, 2025 by rwinch
[Enahncement request] [spring-boot-starter-oauth2-client] ability to provide custom RestClient instead of using RestTemplate for provider get token observablity status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16389 opened Jan 9, 2025 by patpatpat123
Spring Authorization Server returning HTTP 401 for /oauth2/authorize endpoint with response_type=code status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16388 opened Jan 9, 2025 by tomotoyinbo
PublicKeyCredentialUserEntityRepository saves anonymousUser in: web An issue in web modules (web, webmvc) type: bug A general bug
#16385 opened Jan 9, 2025 by justincranford 6.4.x
@rwinch
5
ProTip! Add no:assignee to see everything that’s not assigned.