SummaryDetected by blockhound: WebSessionServerCsrfTokenRepository and CookieServerCsrfTokenRepository make blocking cal...

SummaryPlease provide a way to inject specific RequestCache to the OAuth2AuthorizationCodeGrantFilter. The "sister" filt...

We should consider adding a new attribute ClientRegistration.providerDetails.issuerUri, which would be used for OpenID C...

While, NoOpPasswordEncoder is marked as deprecated we should clearly indicate that it is not going to be removed. Many o...

SummaryThe OpenID 1.0 and 2.0 protocols have been deprecated and users are encouraged to migrate to OpenID Connect. The ...

SummaryI cannot get Spring-Security to log anything in a simple Spring-Boot WebFlux application. I assume I must be doi...

I expected the matcher to not trigger NPE's (resulting in HTTP 500's) but rather choosing to match or not for unknown me...

As of Spring Framework 5.3, "/path/**/other" patterns will be rejected and an exception will be thrown.We should avoid u...

Builds are failing on https://jenkins.spring.io/job/spring-security due to an incompatible feature in Spring Framework 5...

Expected BehaviorI want to access auth server from eureka, something like below,spring.security.oauth2.resourceserver.jw...

Spring Framework added a change that impacts the default matching behavior of an MVC matcher.We should find a way to in...

Currently it is not possible to publish and consume SAML metadata.This is stated in the documentation:Saml 2 Login - Not...

Steve Strassmann (Migrated from SEC-1899) said:It looks like spring-security-saml2-core is available as part of Spring S...

Im currently writing a server which has the requirement to be able to use the "Sign In With Apple" feature. Initially i ...

Update to org.powermock 2.0.7Comment From: spring-projects-issuesFixed via 2c4d13ddef5fbfc157fa41ca8aeff81a0329c923

Update to Spring Framework 5.0.17.RELEASEComment From: spring-projects-issuesFixed via ed2a646a69872c007b559210e34988064...

Update to org.powermock 2.0.7Comment From: spring-projects-issuesFixed via 6d6a22eda1cadc67a2c962fbf77269704f839e39

Update to Spring Data Lovelace-SR17Comment From: spring-projects-issuesFixed via 1e957e96b9cecfe9da8f251e2b8afc50c699824...

Update to Reactor Californium-SR18Comment From: spring-projects-issuesFixed via 9986a3317786afc0709ecfc24fa5cd7769515ce3

Update to Spring Framework 5.1.15.RELEASEComment From: spring-projects-issuesFixed via ecf58c9549aa5d6eb997f9d61e2e9b38d...