SummarySome of the subproject pages (ex: spring-security-oauth) are making an http call which fails when the page is loa...

Expected Behaviororg.springframework.security.oauth2.client.web.server.ServerOAuth2AuthorizationCodeAuthenticationTokenC...

Describe the bug500 does not return cross-domain related header informationTo Reproduce1. @Override protected void c...

java doc for public AntPathRequestMatcher(String pattern) says "Creates a matcher with the specific pattern which will m...

SummaryActual BehaviorExpected BehaviorConfigurationVersionSampleComment From: eleftheriasIt looks like you have already...

SummarySpring Security is experiencing issues with Spring Security's SNAPSHOT Maven metadata due to https://www.jfrog.co...

High level SummaryWhen using the WebFlux security configuration, the user details scope populated inside the Authenticat...

I use the following code to make an authorization,however,i do not know how to return a response defined by myself! @...

SummaryThe mutator mockAuthentication does not compile when used in Kotlin code.The same applies for mutators that use m...

While we upgrade our Kotlin dependency to 1.5.x, we should ensure that we retain Kotlin 1.3 compatibility, so that users...

SummaryWe should provide a pull request to CLA tooling to update to use the new Spring Security OAuth support. Along the...

With the introduction of AuthorizationManager, it may be valuable to have an implementation that makes authorization dec...

Juha Komulainen (Migrated from SEC-2974) said:While @PreAuthorize and other pre post annotations were probably not desig...

SummaryAdding multiple security annotations to a method like this:@RolesAllowed("ROLE_ADMIN")@PostAuthorize(&q...

We have a 5.5.x branch now that GitHub Actions is not activated for. I think we should change the build to exclude the o...

Backport of gh-9772Comment From: rwinchClosed via https://github.com/spring-projects/spring-security/commit/bf9f1de6e1d9...

We need to ensure to include the mavenJava publication which is preventing the SNAPSHOTs from being deployed to repo.spr...

SummaryWe should provide a pull request to Sagan to update to use the new Spring Security OAuth support. Along the way w...

SummaryCurrently sendRedirectForAuthorization can throw an IllegalArgumentException if the client registration is not fo...

SummaryThe default configuration should try to automatically apply oauth2Login under some circumstance. Perhaps it is ju...