Nineya
Home
Blog
软著申请
Spring Security StrictHttpFirewall incorrectly rejects valid CJKV characters
2025-01-18 07:19:58
778
Comment From: tawAsh1Almost LGTM. We also checked the behavior.I was looking at other methods like setAllowUrlEncodedPer...
Spring Security Support for delegation in token exchange according to RFC8693
2025-01-18 07:19:55
819
Keycloak should support delegation when using token exchange according to RFC8693. In the current version of keycloak on...
Spring Security Add relyingPartyRegistrationId to AbstractSaml2AuthenticationRequest
2025-01-18 07:19:52
934
It would be nice if implementations of AbstractSaml2AuthenticationRequest stored the relyingPartyRegistrationId.One bene...
Spring Security ACL does not work with H2 version 2 anymore
2025-01-18 07:19:50
1214
Describe the bug(https://github.com/spring-projects/spring-security/blob/main/acl/src/main/java/org/springframework/secu...
Spring Security Extract rejectNonPrintableAsciiCharactersInFieldName
2025-01-18 07:19:47
152
We should extract rejectNonPrintableAsciiCharactersInFieldName so it can be reused.Comment From: rwinchFixed in 0df5ece7...
Spring Security Retriving RelayState in authenticating SAMLResponse step
2025-01-18 07:19:29
6373
SummaryCurrent codes doesn't seem to provide the way to get RelayState from authenticationManager, Saml2AuthenticationTo...
Spring Security Using unsafe Jackson deserialization configuration is security-sensitive
2025-01-18 07:19:26
4027
ContextCode analysis tool reported a problem about spring-security.Related Code: https://github.com/spring-projects/spri...
Spring Security Add AuthorizationManager that uses ExpressionHandler
2025-01-18 07:19:23
448
In order to better facilitate the use of AuthorizationManager in JSP, Thymeleaf, and XML configuration support, we shoul...
Spring Security Branch 5.8.x should point to samples branch 5.8.x
2025-01-18 07:19:06
216
The samplesBranch property should be updated to point to 5.8.x instead of 5.7.xComment From: marcusdacoregioFixed via ht...
Spring Security Multiple .requestMatchers().mvcMatchers() override previous one
2025-01-18 07:19:03
137
Comment From: marcusdacoregioFixed via https://github.com/spring-projects/spring-security/commit/7983c695e23027cfdb7689b...
Spring Security Fix setServletContext not being called for AuthorizationManagerWebInvocationPrivilegeEvaluator
2025-01-18 07:19:00
137
Comment From: marcusdacoregioFixed via https://github.com/spring-projects/spring-security/commit/15b3744dcfe3c4d753bc2a0...
Spring Security Check Samples should run against the current artifacts
2025-01-18 07:18:58
241
Comment From: marcusdacoregioClosed via https://github.com/spring-projects/spring-security/commit/44e672d9692a5f67abdea8...
Spring Security Check Samples should run against the current artifacts
2025-01-18 07:18:55
241
Comment From: marcusdacoregioClosed via https://github.com/spring-projects/spring-security/commit/991d5c8817468aadf4335d...
Spring Security Check Samples should run against the current artifacts
2025-01-18 07:18:52
157
When checking the samples we are testing against the artifacts that are already deployed. Instead we should run against ...
Spring Security Build failing because of removed deprecated context-related operators
2025-01-18 07:18:50
478
It seems to be related to: - https://github.com/spring-projects/spring-framework/commit/f3fd8f9e1d0d87f016cc87ac0859111c...
Spring Security SEC-2129: AntPathRequestMatcher support case sensitive matches
2025-01-18 07:18:47
7658
Michael Osipov (Migrated from SEC-2129) said:AntPathRequestMatcher claims to work much like AntPathMatcher but treats ev...
Spring Security Consider replacing an inner loop with Set of authority strings in AuthorityAuthorizationManager#isAuthorized
2025-01-18 07:18:45
771
Currently AuthorityAuthorizationManager#isAuthorized uses an inner loop to determine if user has required authority:priv...
Spring Security Allow customization of restOperations for JwtDecoder built using an issuer uri
2025-01-18 07:18:42
1718
JwkSetUriJwtDecoderBuilder allows customizing the restOperations that is used to make calls to the authorization server....
Spring Security Possible log forging
2025-01-18 07:18:39
1659
SummaryIt's possible for user to forge a log and insert random string in there. Like extra lines which looks like logs.A...
Spring Security Multiple .requestMatchers().mvcMatchers() override previous one
2025-01-18 07:18:37
2011
Describe the bugDefining multiple .requestMatchers().mvcMatchers() are overriding previous one.http .requestMatch...
上一页
下一页
1
…
634
635
636
637
638
…
2246
.