When passing an InputStream that begins -----BEGIN PUBLIC KEY-----, RsaKeyConverters.x509 will convert this into a publi...

Doing a git clone results modified gradlew.bat which might be due to changes in .gitattributes:08:59 $ git clone git@git...

Expected BehaviorThe documentation's link should use the new springFrameworkVersion to point to specific reference and A...

We should be able to access the springFrameworkVersion property in the project, like we have with springBootVersion. Thi...

The API links in the SAML2 docs are broken. When trying to access the API docs for RelyingPartyRegistration or RelyingPa...

To take in advantage all the features of JUnit 5. Would be considered a migration/upgrade?Only two kotlin files works wi...

SummaryWhen trying to decrypt data with Node.js (AES256, GCM), I realized the initialization vector was of 12 bytes whil...

version：2.3.4.Looking at the source code, we find that this is caused by the different behaviors defined by the two clas...

Similar to the Java DSL, the Kotlin ServerHttpSecurityDsl should accept a ReactiveAuthenticationManager.http { authen...

PowerMock does not have a GA release that is compatible with JDK 12, nor is one currently planned.Let's convert tests th...

The structure should look like thishttp { oauth2ResourceServer { opaqueToken { authenticationManage...

The structure should look like thishttp { oauth2ResourceServer { jwt { authenticationManager = Prov...

According with the Install all spring-* jars into your local Maven cache sectionit indicates: ./gradlew installIn two di...

Similar to the reactive side, the HttpSecurity DSL should accept an AuthenticationManager.The configuration would look l...

What are some good ways to handle dynamic refresh permissions in "security"?Sometimes there is a need to dynamically upd...

The SecurityMockMvcRequestPostProcessors and SecurityMockServerConfigurers references contain a section for each OAuth 2...

I don't understand why AuthenticationWebFilter throws an IllegalStateException when an empty authentication results afte...

Related #9986 ContextFor each version of Spring Security to be able to point to the right Spring Security Samples branch...

Describe the bugWe're using Spring security OAuth2 client with grant type password. It uses both access_token and refres...

ID Token RFCazpOPTIONAL. Authorized party - the party to which the ID Token was issued. If present, it MUST contain the ...