SummaryHey,The current implementation of the Pre- & PostFilter can not be used for the return type of Flux.By tryin...

When two builds for the same branch run very close together, sonar can at times get caught in a race condition, and one ...

SummaryThe authentication reading/authentication request creation is not reuseable, because it's embedded in web related...

The script inside settings.gradle dynamically searches for all *.gradle files to determine the list of gradle projects/m...

Spring Security already depends on cas-server-webapp:4.2.7; however, the casserver module uses 4.0.0:dependencies { ...

SummarySimilar to how we extracted out the CSRF documentation, we should extract the authentication into the about secti...

SummaryOur build currently depends on sitemesh, but it hasn't been updated in a very long time. We should remove it from...

SummaryI'm using Maven and spring-security-crypto. I need to import the org.bouncycastle:bcpkix-jdk15on optional depende...

SummaryOur samples are using an old version of cas-server-webapp. We should try to update to the latest versionComment F...

We should configure the repositories in settings.gradle now that it supports shared repository configurationComment From...

Expected BehaviorIn the saml2 service provider there is a filter, Saml2WebSsoAuthenticationRequestFilter, who generate a...

It would be nice if AuthorizationFailureEvent and AuthorizedEvent each held a reference to the AuthorizationDecision tha...

I already raise the same issue in Spring Project but just in case I'm posting it here as well.Spring framework has the b...

Currently, it is not possible to do this @Bean@Order(1)WebSecurityConfigurerAdapter testWebSecurityConfigurerAdapter() {...

Modern application should be using secure password storage and https. This means that Digest authentication is not possi...

Currently, the AuthenticationDetailsSource can only be configured for httpBasic and x509. In theory, the same support fo...

SummaryNot able to add custom parameters to OAuth Token Request as query paramsActual BehaviorI'm trying to build a cust...

The failureUrl(String) Javadoc states that this method is a shortcut for invoking failureHandler(AuthenticationFailureHa...

In our project we have very complex security restrictions.When some Start event happens we grant some permissions to a s...

Describe the bugWhen using the SwitchUserFilter with Basic auth, BasicAuthenticationFilter.authenticationIsRequired() fa...