I'm building a back end API with spring boot and I'm using Postman to imitate the client application. Sign up is working...

Gradle provides dependency constraints and platforms as a more modern way of controlling dependency versions when compar...

The build currently relies on old compile and testCompile configurations. We should migrate to api/implementation variat...

We should add a task that automatically updates the dependencies of the build. The minimum requirements:Be able to creat...

It would be nice if Spring Security supported REST APIs issuing self-signed JWTs.One use case that is quite common is fo...

More and more web applications are becoming stateless, so it should be possible to replace sessions with JWTs instead. F...

We migrated to Spring Security from the Zalando Tokens library which was able to fetch the JWT Tokens for the OAuth2 cli...

BasicAuthenticationFilter uses default password encoder which in latest spring boot set to BCrypt. This configuration cr...

Whilst looking at https://github.com/spring-projects/spring-boot/issues/23421 I noticed a few of our migrations use the ...

SummaryThis page: https://docs.spring.io/spring-security/site/docs/5.0.4.RELEASE/reference/html/websocket.htmlhas text: ...

SummaryCurrently, the travis build does not cache the maven and gradle artifacts from build to build.Caching is enabled ...

Now that we use GitHub Actions for Pull Requests (gh-8680) we should remove Travis Comment From: eleftheriasClosed via ...

SummaryWhen using anonymous user in security and trying to inject the Authentication or Principal to a method in a RestC...

I added a custom AuthenticationProvider not only use username, but also through the mobile phone number, email for valid...

Should be able to set authenticationFailureHandler and authenticationSuccessHandler.Right now this is not possible, so t...

Consider to upgrade the gradle/wrapper/gradle-wrapper.properties file to distributionUrl=https\://services.gradle.org/di...

SummaryI downloaded a fresh copy of Spring Security 3.2.10 from Maven Central and found the MANIFEST.MF is empty:Manifes...

Expected BehaviorI want to make some oAuth requests using a loadbalancer. For example, requests to get a token, refresh ...

Describe the bugTrying to create a JWT decoder using the JwtDecoders.fromOidcIssuerLocation methods propagates to the fo...

Describe the bugServletOAuth2AuthorizedClientExchangeFilterFunction with AuthenticatedPrincipalOAuth2AuthorizedClientRep...