Describe the bugWhen attempting to add a new collection in my InMemoryRelyingPartyRegistrationRepository, it does not wo...

Describe the bugNot sure this is an intended change or not in https://github.com/spring-projects/spring-security/commit/...

When publishing PrePostTemplateDefaults like so:@Bean PrePostTemplateDefaults templateDefaults() { return new PrePost...

Thank you for your continuous efforts in maintaining and improving spring security.I would like to discuss a potential e...

Need to add an OAuth2AuthorizedClientService implementation that gets OAuth2AuthorizedClient from the cache. In some cas...

Describe the bugI had a ticket to upgrade one of the springboot application to spring boot 3 version after upgrade every...

Expected Behavior"Impersonate" (SwitchUserGrantedAuthority) is supported by JSON session serialization (SecurityJackson2...

SignatureAlgorithm does not support EdDSA algorithm, I can not use JwkSetUriJwtDecoderBuilder to create a NimbusJwtDecod...

Yale Madden (Migrated from SEC-1877) said:The rolePrefix member of LdapUserDetailsManager defaults to "ROLE_." This forc...

Using Spring Security 5.3.1.RELEASEI use XML based configuration for most security setup as I have customizations that n...

I have a federated spring authorisation server which uses social login. To restrict the number user login sessions, enab...

SummarySample: https://github.com/bitsofinfo/spring-boot-data-pre-authorize-issuespring-security 4.1.3, spring-boot 4.1,...

Expected BehaviorSaml2LogoutRequestFilter should return a logout response back to the user agent when validation errors ...

Describe the bugWhen adding an @PreAuthorize annotation to my repository interface that checks certain entity fields the...

DUBOIS Fabrice (Migrated from SEC-1658) said:I run into problems with CAS Single Sign Out feature working with session-f...

Describe the bugWhile integrating Reactive spring security with observability, we got a code to create the bean of Obser...

Need to make a composite ReactiveAuthenticationManager, for example CompositeReactiveAuthenticationManager, which contai...

It would be nice if Spring Security's method security meta-annotation support allowed for parameters.For example, it wou...

Expected BehaviorIt's a common case with OAuth to have several instances of an horizontal scaled, stateless application ...

Describe the bugI have a problem where a customer is sending a HTTP request to my Spring application and gets rejected b...