Spring Security Cannot add custom methods to secure method invocations in spring-security 6

  • 2025-01-18 07:55:32
  • 2071
Hello,I am attempting to migrate my Inception Framework, based on Spring Boot 2, to Spring Boot 3.I have created a ApiMe...

Spring Security Refreshing token with supplied OAuth2AuthorizedClient including principal saves it as anonymous principal

  • 2025-01-18 07:55:30
  • 3770
We have a scenario where our users are linked against a back-end using OAuth2 code grant. We're using oauth2Client() rat...

Spring Security OidcIdToken cannot be serialized to JSON if token contains claim of type JSONObject

  • 2025-01-18 07:55:27
  • 2353
Describe the bugIf an IdP sends an ID token with claim may_act, the Jackson ObjectMapper with SecurityJackson2Modules ca...

Spring Security OAuth 2.0 Resource Server Multi-tenancy - documentation improvement

  • 2025-01-18 07:55:24
  • 1172
Expected BehaviorPreamble: I don't know the correct way to voice this issue, so if it's not the correct way, please tell...

Spring Security Spring Security 6.0 allows me to see the h2-console login page but doesn't allow me to go inside, how do I do?

  • 2025-01-18 07:55:19
  • 2440
Describe the bugI'm struggling to access my h2-console under the protection of Spring Security 6.0.almost the same code ...

Spring Security Add AuthorizationRequestRepository option in securityconfig

  • 2025-01-18 07:55:16
  • 745
Expected Behaviordeveloper can custom AuthorizationRequestRepository implement if they dont want to use sessionCurrent B...

Spring Security Add EnableWebSecurity migration steps to 5.8 guide

  • 2025-01-18 07:55:12
  • 190
Related to #12074, specifically https://github.com/spring-projects/spring-security/issues/12074#issuecomment-1289066109 ...

Spring Security Outdated example in Javadoc of UrlAuthorizationConfigurer

  • 2025-01-18 07:55:09
  • 648
The example in Javadoc of UrlAuthorizationConfigurer is referring its default constructor that no longer exists.Comment ...

Spring Security unable to access h2-console with Spring Security 6

  • 2025-01-18 07:55:06
  • 1831
Describe the bug- I've upgraded a working Spring Boot 2 / Spring Security 5 project to Spring Boot 3 / Spring Security 6...

Spring Security Add a RelyingPartyRegistrationRepository constructor to Saml2MetadataFilter

  • 2025-01-18 07:55:00
  • 2563
To expose the SAML metadata endpoint we have to register a Filter:DefaultRelyingPartyRegistrationResolver relyingPartyRe...

Spring Security Loading service provider xml without IDPSSODescriptor element

  • 2025-01-18 07:54:57
  • 986
https://github.com/spring-projects/spring-security/blob/cd0f02de49248a0fd0a2021201034a5f6c680417/saml2/saml2-service-pro...

Spring Security WebSecurityConfigurationAdapter is missing from spring-security

  • 2025-01-18 07:54:54
  • 667
I used to work with spring security before 15 days, and I implemented a basic JWT auth system. It works fine, but now, I...

Spring Security Regression: ServerHttpSecurity ignore calls to permitAll() starting with 6.0.0-M7

  • 2025-01-18 07:54:52
  • 2329
Describe the bugStarting with Spring Security 6.0.0-M7 (used by Spring Boot 3.0.0-M5), calls to permitAll() when config...

Spring Security Add Authority String AuthorizationManager

  • 2025-01-18 07:54:49
  • 469
It would be helpful to have an AuthorizationManager that takes the needed authorities as context.Something like (pseudoc...

Spring Security No easy way to set SecurityContextRepository on OAuth2ResourceServerConfigurer

  • 2025-01-18 07:54:46
  • 8253
Expected BehaviorEasy way to set the SecurityContextRepository on the BearerTokenAuthenticationFilter when using OAuth2R...

Spring Security Error org.springframework.beans.factory.BeanDefinitionStoreException using Spring Boot 3

  • 2025-01-18 07:54:44
  • 6209
I try to upgrade from spring boot 2.x.x into 3.0.0.Now its not running with the following errors.Error org.springframewo...

Spring Security Regression: authorizeHttpRequests() causes AuthenticationProvider to not be called

  • 2025-01-18 07:54:41
  • 3221
Using Spring 6.0.2 and Spring-Security 6.0.0. No spring-boot involved.Describe the bugFollowing deprecation notice on a...

Spring Security AuthorizationFilter behaves different from FilterSecurityInterceptor for requests without bearer token

  • 2025-01-18 07:54:38
  • 7632
I'm observing this with Spring Boot 2.7.5 (Spring Security 5.7.4).Consider the following minimal resource server applica...

Spring Security Ignored requestCache.saveRequest, because sendRedirect is in front

  • 2025-01-18 07:54:33
  • 998
Describe the bugI am using CookieRequestCache .However, as SendRedirect proceeds first, cookie settings are not included...

Spring Security v6.0.0 release notes no mention of WebSecurityConfigurerAdapter being removed

  • 2025-01-18 07:54:30
  • 1487
Describe the bugWhen looking at the release notes for v6.0.0, there is no mention of the WebSecurityConfigurerAdapter be...
上一页 下一页
.