Tests relying on HSQLDB 2.5.1 are failing because of https://sourceforge.net/p/hsqldb/bugs/1585/We will temporarily chan...

Spring (WebFlux) has e.g. this extension function:suspend fun ServerResponse.BodyBuilder.bodyValueAndAwait(body: Any): S...

Expected BehaviorIf I create my own factory method, instantiating PreInvocationAuthorizationAdvice, which will be used i...

SummaryI'm trying to connect Keycloak and Spring Boot with Webflux (Kotlin) and I'm trying to pass Keycloak token as Bea...

Hope to support simplified API (json) login modeComment From: eleftherias@120011676 Could you explain in more detail wha...

Summary5934 added support for AnonymousAuthenticationTokens in Reactive applications. It seems one thing was missed out...

SummaryHello, I have faced an issue that I cannot get named parameter JDBC template while I work with your implementatio...

SummaryIn both BasicAuthenticationFilter and DigestAuthenticationFilter the schema is compared case sensitive.butAccordi...

Bug descriptionPerforming non-GET requests with no content-type header results in a NullPointerException from CsrfWebFil...

Related to https://github.com/spring-projects/spring-security/issues/8873It would be nice if OpenSaml4AuthenticationRequ...

We have an issue with Active Directory/LDAP user accounts becoming locked after doing a single call to LdapAuthenticatio...

SummaryPer RFC 6749 section 5.1 the expires_in in the response is recommended, but not required. Thus, OAuth2AccessToken...

Currently, JwtAuthenticationToken always pass one Jwt instance to super constructor (AbstractOAuth2TokenAuthenticationTo...

Hi,class org.springframework.security.oauth2.core.user.OAuth2UserAuthority includes its attributes for the calculation o...

https://github.com/spring-projects/spring-security/blob/b78a28be5fa714f8f6afe283a9b468969ff8cc43/oauth2/oauth2-core/src/...

Expected BehaviorThe release-next-version.yml workflow should be triggered on each maintenance branch.Current BehaviorGi...

Searching for things using the search feature (in the upper right) returns 404'sTo Reproducehttps://docs.spring.io/sprin...

Describe the bugWhen using Spring Security's group authorization feature, get 'bad SQL grammar'.To Reproduce1. use the f...

So that we can implement other ways of serialising the request to the cookie valueComment From: sjohnr@bhuism thanks for...

Backport of #11262 Comment From: jzheauxClosed in 649428b49aae3362e0fcad23a360593b8f02fdefComment From: straakaaHi, when...