玖涯软件开发|java/go/python

Spring Security DaoAuthenticationProvider is not usable on RHEL 8.7 with enforced FIPS mode

Describe the bugCreating instance of DaoAuthenticationProvider fails due to "PBKDF2WithHmacSHA256 SecretKeyFactory not a...

Spring Security Remove OpenSaml deprecation warnings

Expected BehaviorWhen running Spring Security with saml support it should not log deprecation warnings.Current BehaviorW...

Spring Security Clarify documentation code snippet(s) (unclear where static imported methods come from)

Working with the documentation and trying to get something compiling can be pretty painful when code samples in docs do ...

Spring Security BCryptPasswordEncoder apparently uses an incorrect pattern

It sounds implausible, but it seems the pattern that BCryptPasswordEncoder uses is incorrect. It has an unescaped slash....

Spring Security Improve AbstractSecurityExpressionHandler performance

SummaryAbstractSecurityExpressionHandler creates new StandardEvaluationContext instances over and over, thus leading to ...

Spring Security What's method that I should read the spring-security documentation right?

When I read the section about oauth2 in the spring security documetation, I find that i can not understand it. Comment F...

Spring Security Request was rejected for welcome page of under WEB-INF

SummaryRequest was rejected for welcome page of under WEB-INF directory as follow:<welcome-file-list> <welcome...

Spring Security Support for RemoteAclService to get permissions in microservices

SummaryIf we have a microservice to manage the Acl permissions, we need a RemoteAclService to get permissions like Remot...

Spring Security The denyAll() security config statement sometimes stops from accessing a PreAuthorize() annotated controller

SummaryBy using the latest Spring Security, and Spring Boot releases, a non PreAuthorize() controller gets Access Denied...

Spring Security RequestMatchers Not Working with Roles / Authority

Describe the bugRequest Matcher are not working with hasAnyAuthority & hasRoleI have Two ROLES ks_adminks_userks_use...

Spring Security Spring Security 6 does not invoke jwk-set-uri [Spring-boot-3]

DescriptionI recently migrated from Spring Boot Version 2.7.10 to 3.0.5. The oauth2 resource server with minimalistic co...

Spring Security Why not adopting the fluent shape for HttpSecurity authorization rules on Documentation?

I am seeing everywhere in the documentation the following shape for authorization rules:http.authorizeHttpRequests(autho...

Spring Security Access to "/" on actuator on dedicated port with security configuration does not work.

Describe the bugAccess to "/" on a dedicated actuator port is not allowed, even if specified in security filter chain.To...

Spring Security Misleading error response giving 401 Unauthorized instead of 500 when @PreFilter("filterObject.contactName != 'Test'") is used and we try to get contacts.get(0)

Describe the bug1) I am getting 401 instead of 500 in the response; but getting 200 OK for other requests as described i...

Spring Security Roles and authorities in UserBuilder replace each other based on the order in which they were defined.

DescriptionThe roles and authorities in UserBuilder replace each other based on the order in which they were defined. Th...

Spring Security Update Argon2PasswordEncoder defaults to match OWASP Recommendations for 2023.

Expected BehaviorArgon2PasswordEncoder should have defaults that match OWASP Cheat Cheat Recommendations.Current Behavio...

Spring Security Document how to use the new requestMatchers and securityMatchers

See: - #11899 - #11939 - https://github.com/spring-projects/spring-security/issues/11347Comment From: craph@marcusdaco...

Spring Security NPE when using WebTestClient with Spring MVC

Describe the bugAccording to Spring Framework 5.3 Reference Documentation, I should be able to use WebTestClient to test...

Spring Security SecurityWebApplicationInitializer.getSecurityDispatcherTypes example is wrong in migration guide

In https://docs.spring.io/spring-security/reference/5.8/migration/servlet/authorization.html#switch-filter-all-dispatche...

Spring Security Simplify AuthorizationManager composition

To compose two authorization managers, some boilerplate is necessary. For example, to achieve a logical "or" between two...

上一页下一页

1
…
591
592
593
594
595
…
2246

.