玖涯软件开发|java/go/python

Spring Security Update jackson-databind to 2.13.4.1

Comment From: marcusdacoregioClosed via https://github.com/spring-projects/spring-security/commit/f7f53ea2b786506d040924...

Spring Security Update jackson-datatype-jsr310 to 2.13.4

Comment From: marcusdacoregioClosed via https://github.com/spring-projects/spring-security/commit/f7f53ea2b786506d040924...

Spring Security Update mockk to 1.12.8

Comment From: marcusdacoregioThis upgrade is not possible since mockk has increased the language level in the minor vers...

Spring Security SecurityContextImpl does not have hints to resolve the Authentication

Describe the bugspring-security doesn't provide enough metadata for GRAAL to properly use CurrentSecurityContextArgument...

Spring Security Add default AuthorizationManager to RequestMatcherDelegatingAuthorizationManager

RequestMatcherDelegatingAuthorizationManager should have a default AuthorizationManager that is invoked when the request...

Spring Security Cache Xor CSRF token in supplier

We should cache the Xor CSRF token (in request attributes) from XorCsrfTokenRequestAttributeHandler, so the CSRF token i...

Spring Security once https - always https

Describe the bugI have http.headers().httpStrictTransportSecurity disabled.No https even configured. No certificate - no...

Spring Security Spring Oauth2 Resource Server Invalid Bearer Token Exception

Hi i am new for oauth2 spesification and i try login with google provider. i have gateway and backend service in my proj...

Spring Security Remove deprecated constructors in PasswordEncoders

Remove deprecated constructor in Argon2PasswordEncoder and replace with Argon2PasswordEncoder.defaultsForSpringSecurity_...

Spring Security Update default configuration for Pbkdf2PasswordEncoder

Expected BehaviorPbkdf2PasswordEncoder should not let you generate a hash longer than the hash function. This should eit...

Spring Security Update PasswordEncoder Minimums

Based on https://github.com/spring-projects/spring-security/pull/10447#issuecomment-966593724, Argon2PasswordEncoder, Sc...

Spring Security Force request of new OAuth2 access token before it is expired

Spring Security keeps a refresh token internally, and only requests a new access token when the "current" access token i...

Spring Security Provide common super class for AuthorizationDeniedEvent and AuthorizationGrantedEvent

Spring Boot has a AbstractAuthorizationAuditListener class designed to adapt Spring security authorization events. In Sp...

Spring Security No Type Safety with 'Object'

Use Generics in the interface to set the type of the parameters rather than using the Object class.Currently for Permiss...

Spring Security Build fails with missing project property cloneOutputDirectory

If you open this project up from a fresh clone the build fails (and causes havoc in IDE as well) because of a missing pr...

Spring Security OAuth2AuthorizedClientRepository There is a circular dependency problem

Comment From: imaxunspring boot version 2.6.10spring security version 5.6.6spring-security-oauth2-authorization-server ...

Spring Security After upgrade to spring boot 3.0.0-M5, TestingAuthenticationToken and UsernamePasswordAuthenticationToken not work the same as spring boot 2.7.3

Describe the bugAfter upgrade to spring boot 3.0.0-M5, TestingAuthenticationToken and UsernamePasswordAuthenticationToke...