Expected BehaviorFrom the spec quoted by OAuth2AccessTokenResponse (https://tools.ietf.org/html/rfc6749#section-5.1) the...

Describe the bugI know this has been addressed and fixed before for client_credentials grant type: https://github.com/sp...

Hello,I was trying to extend the current pre authorization behavior to suit our needs. Basically I wanted to look at the...

Describe the bugI am using spring-boot-starter-parent 2.6.4. I need to integrate with Okta api with client credentials p...

It would be nice if we provided annotated support for securing returned values. For example:@Serviceclass FooService { ...

Describe the bugFollowing the announcements, expected to see Spring Security 6.0.10 release but sadly cannot find it amo...

I am developing a reactive Spring Boot application with Spring Cloud Gateway and Spring Security using only Webflux and ...

Trying to do simple AD or ldap integration with the below code but it is not working,@Autowired protected void config...

A key feature of spring-security-saml2-core was the ability to easily configure multiple metadata providers to configure...

Expected BehaviorCurrently, if the JWT is having typ as "at+jwt", the token is rejected with message "Failed to authenti...

Describe the bugSessionManagementFilter does not seem to honor the require explicit save option - securityContext .req...

It would be nice if we could support programmatic support for proxying objects with method security. For example:class F...

Need to add support for retrieving tokens from different headers in one component. This is a common case when a project ...

Expected BehaviorSpring Security should support https://wicg.github.io/change-password-url/index.htmlComment From: evgen...

Expected BehaviorUsernamePasswordAuthenticationFilter supports configuring AuthenticationManagerResolver, just like the ...

AuthorizationManagerAfterMethodInterceptor creates interceptors using the PostAuthorizeAuthorizationManager. However, th...

Describe the bugAm working on migrating a project from saml extension to saml2loginHere is my code snipet.saml2Login(sam...

Describe the bugAfter upgrading Spring Boot from 2.7.11 (Spring Security 5.7.8) to 3.1.2 (Spring Security 6.1.2) uploadi...

In AbstractPreAuthenticatedProcessingFilter.java in the following block of codeif (AbstractPreAuthenticatedProcessingFil...

When using Spring Boot 3.x and Spring Security 6.x, I need to implement multi-party login. At this time, I implemented m...