玖涯软件开发|java/go/python

Spring Security authorities in the User between Spring Security Core version 6.1.0 and 6.1.2

my codei defined an in-memory User object.see the breakpoint resultsource code differSpring Security Core version 6.1.0 ...

Spring Security I'm getting 401 error instead of 404.

When we are logged in the system and we access a resource that is not mapped ( doesn't exist) we get back a 404 error bu...

Spring Security Default Security Configuration adds WWW-Authenticate Twice

The default configuration of Spring Security 6.1.2 adds the WWW-Authenticate twice when an unauthenticated request comes...

Spring Security AuthenticationEntryPoint is not triggered on invalid bearer token

Describe the bugI have a Spring application that configures a custom AuthenticationEntryPoint (I add it simply to log au...

Spring Security Documentation contains inaccurate information about permitting the FORWARD dispatcher in Kotlin

Describe the bugIn the provided documentation, there is a code snippet that suggests using DispatcherType within the aut...

Spring Security Query on documentation related to dealing with Static Resource (e.g css)

Spring Boot: v3.1.4Hi all, I notice that in the official spring security documentation Favor permitAll over ignoring...

Spring Security Dynamically Enabling @EnableReactiveMethodSecurity

Is the @EnableReactiveMethodSecurity annotation capable of being dynamically enabled and disabled by reading parameters ...

Spring Security Saml2LoginConfigurer don't allow to customize Saml2WebSsoAuthenticationFilter

Concern spring-security 5.8.6, hadn't tested for 6.xWhen using HttpSecurity.saml2Login to configure SAML for an applicat...

Spring Security Missing CsrfTokenRequestHandler when importing Spring Security Test 5.8.5

Describe the bugI'm writing unit test to test my secured endpoint (with @PreAutorized annotation), like described in spr...

Spring Security CookieCsrfTokenRepository resets httpOnly to true in case a cookieCustomizer is set

https://github.com/spring-projects/spring-security/blob/8d58113b61f2a0d8fa5d563faf53d59a83dab673/web/src/main/java/org/s...

Spring Security java.io.NotSerializableException: org.springframework.security.kerberos.authentication.JaasSubjectHolder

Describe the bugspring-security-kerberos-core, 2.0.0introduced org.springframework.security.kerberos.authentication.Jaas...

Spring Security Update release scheduler versions

The release-scheduler.yml lists versions (mapped to branches) to be included in scheduled releases. We should update ver...

Spring Security Spring Security 6 CSRF Token Accepting Random Tokens

Using Spring Boot 3.1.2Using Spring Boot Starter Security Describe the bugWhen I am passing any random csrf token as sh...

Spring Security why not create AuthenticationToken in SecurityContextHolder, when requesting from 6.1 Version to Rest API Login

Hello, I'm not good at English, so please understand that the title is a bit vague.When I use security, I often implemen...

Spring Security Spring Security 6.0.2 ObservationFilterChainDecorator produce wrong instrument names

Describe the bugOpen Telemetry Java Agent version 1.21 don't like the Instrument names produced by Spring Security 6.0 (...

Spring Security antMatchers("/h2-console/**") works well with security 5.3.6 while doesn't with security 5.7.5

Describe the bugI'm trying to secure the access to "/h2-console/**", the same code works well with spring boot 2.3.7 (se...

Spring Security Spring security 5 "Bad credentials" exception not shown with errorDetails

SummaryI'm just switch from Spring Boot 1.5.4 to 2.0.0.BUILD-SNAPSHOT. Most functionality migrate seamless, but i meet s...

Spring Security Document that Http-Redirect binding not supported for SAML 2.0 responses

Describe the bugWhen setting RelyingPartyRegistrations assertionConsumerServiceBinding to Saml2MessageBinding.REDIRECT w...

Spring Security Update org.springframework to 6.1.0-M4

Comment From: sjohnrIssue50Tests fail with error:java.lang.IllegalStateException: Failed to load ApplicationContext for ...

Spring Security RequestMatcherMetadataResponseResolver only shows last RelyingPartyRegistration

RequestMatcherMetadataResponseResolver incorrectly computes the key for identifying identical registrations when the ent...

上一页下一页

1
…
574
575
576
577
578
…
2246

.