OpenSamlAuthenticationRequestFactory has a method called setProtocolBinding, which allows an application to indicate to ...

Describe the bugDefaultBearerTokenResolver.resolve is returning bearer token by ignoring padding indicators (=). Example...

Related to #8356 In order for implementations of Saml2AuthenticationRequestFactory to take advantage of custom Saml2Auth...

Saml2Error and Saml2ErrorCodes are currently in org.springframework.security.saml2.provider.service.authentication; howe...

so I believe currently after OIDC retrieves the profile information it wipes the access token, refresh token, etc. Howev...

Describe the bugIn the spring version: 5+ (5.1.9 spring-security-web) for % and ; 1) spring framework is throwing full s...

PowerMock maintains compatibility with Mockito 2.+ as stated in the PowerMock wiki https://github.com/powermock/powermo...

This is a very simple idea but practical - OAuth2AuthorizedClient should take a usernameOfRegistration for the ClientRe...

The Kotlin DSL should allow setting a custom HeaderWriter@EnableWebSecurityclass SecurityConfig : WebSecurityConfigurerA...

Expected Behavior.I wanted to show spring security messages in mongolianCurrent BehaviorThere is no file named messages_...

Related to #5200 and https://github.com/spring-projects/spring-security/pull/6352#discussion_r251856850One way to simpli...

SummaryAdding scope: https://www.googleapis.com/auth/contacts.readonly to google oauth2 login generating following excep...

SummaryWith Spring Security 4.2.4 used in a Spring Boot application, accessing a "non-normalized" URI, e.g. one containi...

The configuration should look like this@EnableWebSecurityclass SecurityConfig : WebSecurityConfigurerAdapter() { over...

RelyingPartyRegistration is built as a link between the relying party's metadata and the asserting party's metadata.As s...

Describe the bugorg.springframework.security.crypto.password.LdapShaPasswordEncoder().encode() return {SSHA}payload form...

In Spring Framework 5.3 snapshots Spring MVC has support for parsed PathPatterns, see https://github.com/spring-projects...

Yannis Thanasoulas (Migrated from SEC-2091) said:ApplicationSessionCookieConfig.createSessionCookie(Context,String,boole...

See https://github.com/spring-projects/spring-boot/issues/21679Comment From: rwinchThis is now fixed in the latest snaps...

When using @WithUserDetails in a JUnit 5 Nested Test, userDetailsService is not found. Error:java.lang.IllegalStateExcep...