玖涯软件开发|java/go/python

Spring Security ClaimAccessor#getClaimAsMap doesn't return null as documented

Describe the bugorg.springframework.security.oauth2.core.ClaimAccessor#getClaimAsMap's Javadoc reads as follows: * @...

Spring Security 5.5.X only works with spring-security-5.4.xsd schema (XML-based config)

Describe the bugSecurityNamespaceHandler throws BeanDefinitionParsingException when we use version 5.0.X (<= 5.0.18.R...

Spring Security Deprecate CommonOAuth2Provider.OKTA

We should @Deprecated CommonOAuth2Provider.OKTA as it doesn't provide much value in defaults.The original intent of Comm...

Spring Security Deprecate Kotlin methods that have equivalents using reified types

gh-8697 introduced Kotlin methods that use reified types instead of accepting a Java class parameter.The legacy methods ...

Spring Security Deprecate remoting technologies support

Related https://github.com/spring-projects/spring-framework/issues/25379We should deprecate our remoting module entirely...

Spring Security Add support for JWT-Secured Authorization Request (JAR)

We should add support for JWT-Secured Authorization Request (JAR).This issue addresses client-side support and spring-au...

Spring Security Add Reasons to AuthorizationDecisions

It's helpful to know why a security decision was made.AuthorityReactiveAuthorizationManager and AuthorityAuthorizationMa...

Spring Security Improve Method Security Logging

Logging should be refactored for when @EnableGlobalMethodSecurity is used. For example, on startup, method security's DE...

Spring Security Implement reactive support for JWT as an Authorization Grant

This ticket addresses the reactive support for gh-6053.Comment From: jonathannaguin@sjohnr a question about this impleme...

Spring Security Unsupported algorithm of RS512

A clear and concise description of what the bug is.I use springframework.security.oauth2 as client for authorization. Wh...

Spring Security Webflux ServerAuthenticationConverter getting called for permitted paths too

I am trying to implement jwt authentication with spring webflux and i am adding filter on SecurityWebFiltersOrder.AUTHEN...

Spring Security Implement reactive support for JWT Client Authentication

This ticket addresses the reactive support for gh-8175.Comment From: GiambapisasaleMy workaround:public class WebClientR...

Spring Security SAML 2.0 Login should allow loginProcessingUrl without {registrationId} when providing an AuthenticationConverter

https://github.com/spring-projects/spring-security/blob/662ab1041647d516c9cb047f123ead05d4ee3d2f/config/src/main/java/or...

Spring Security AuthenticationPrincipal argument type cannot be primitive

Describe the bugI discovered an issue in the @AuthenticationPrincipal annotation handlerI have a custom UserDetails sub-...

Spring Security Buggy PostInvocationAdviceProvider::supports(Class<?> clazz) implementation

The current implementation doesn't allow to support MethodInvocation - inherited classes :@Override public boolean su...

Spring Security MessageSourceAccessor should use messageSource from MessageSourceAware as parent

Expected BehaviorSpring Security default ResourceBundle org.springframework.security.messages always as fallback.Current...

Spring Security JwtTimeStampValidator uses wrong error on token expiration

SummaryI think the JwtTimeStampValidator uses the wrong error type when a token expires: https://github.com/spring-proje...

Spring Security Reactive OAuth2 Bearer Token request spec compliance

Like DefaultBearerTokenResolver, ServerBearerTokenAuthenticationConverter should fail when two access_token parameters a...

Spring Security Get structure101 plugin working in build

Structure101 is a licensed tool Spring Security uses for package tangles.It would be nice if it were checked as part of ...

Spring Security Why not c

Expected Behavior- update the expiration time of the access token every time you log in againuse the exist access token ...

上一页下一页

1
…
657
658
659
660
661
…
2246

.