玖涯软件开发|java/go/python

Spring Security Make return type of UserDetails related services be covariant

Expected BehaviorIt would be better if the return type became a covariant:Mono<? extends UserDetails>For example, ...

Spring Security Re-enable CI pipeline for 5.4.x branch

We should re-enable the CI pipeline for 5.4.x using GitHub Actions.Blocked on https://hibernate.atlassian.net/browse/HV-...

Spring Security Add WebFlux WebSocket Support

SummaryAdd WebFlux WebSocket SupportComment From: bollywood-coderHi Rob,thank you so much for taking care of this. Secur...

Spring Security Fix OAuth2ResourceServerConfigurer member variable using Java 9+ feature

The code in the 5.7.x branch is requiring JDK 11 https://github.com/spring-projects/spring-security/blob/f04cd641b035fc1...

Spring Security Build modules using Java 8

We should use Java 8 to build our modules since we have to be Java 8 compatible.As of now, there is no way to know if we...

Spring Security SEC-1706: Support char[] for clear-text passwords so that erasable passwords can be used

Juan Antonio Farré Basurte (Migrated from SEC-1706) said:It's a good practice, whenever unencrypted passwords are manipu...

Spring Security SEC-1586: RemoteAuthenticationException is not catch by spring security filter

Ludovic Praud (Migrated from SEC-1586) said:When using remote authentication over RMI, I use RemoteAuthenticationManager...

Spring Security Remove dependency on conmmons-codec by using java.util.Base64

Currently some tests and one production class make use of commons-codec. The extra external dependency could be removed ...

Spring Security Align OAuth 2.0 Login/Client documentation with new format

The OAuth 2.0 Login and OAuth 2.0 Client reference documentation needs to be updated to align with the new format introd...

Spring Security Filter Chain from child contexts are not applied

Describe the bugI'm using Spring Boot 2.4.2 with Spring Security 5.4.2.The application has a main context, with a WebSec...

Spring Security The title of Digest Authentication document doesn't render properly

Describe the bugThe title of Digest Authentication in document (path: servlet/authentication/passwords/digest.adoc) does...

Spring Security Add RoleHierarchyAuthorizationManager

To replace RoleHierarchyVoterComment From: evgeniychebanI'd like to take this.Comment From: evgeniycheban@jzheaux I thin...

Spring Security Should SAML metadata EntityDescriptor tag have the md: prefix?

Expected BehaviorAll tags in the metadata xml have md: or other appropriate prefixes, except for the EntityDescriptor ta...

Spring Security Add AuthorizationManager XML Support for Filter Security

Add authorization-manager-ref and use-authorization-manager to <http>, similar to <websocket-message-broker>...

Spring Security Automate moving open issues to next milestone

Comment From: sjohnrClosing as we want to use open issues to block an automated release instead (see gh-11257). Moving a...

Spring Security Create Embedded LDAP Support Classes

Currently it requires multiple beans to support embedded ldap support. @Bean UnboundIdContainer ldapContainer() { ...

Spring Security SAML: Document how to change validation for audiences when using example IssuerSaml2AuthenticationRequestFactory

SummaryThe documentation shows as example IssuerSaml2AuthenticationRequestFactory on how to get "more control", but it d...