Skip to content

Issues: spring-projects/spring-security

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

954 Open 11,669 Closed
954 Open 11,669 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Simplify support of username as a nested property
#16390 opened Jan 9, 2025 by rwinch
[Enahncement reuqest] [spring-boot-starter-oauth2-client] ability to provide custom RestClient instead of using RestTemplate for provider get token observablity status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16389 opened Jan 9, 2025 by patpatpat123
Spring Authorization Server returning HTTP 401 for /oauth2/authorize endpoint with response_type=code status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16388 opened Jan 9, 2025 by tomotoyinbo
Bug? Spring Security WebAuthn authentication saves anonymousUser in PublicKeyCredentialUserEntityRepository status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16385 opened Jan 9, 2025 by justincranford
1
DefaultOAuth2AuthorizationRequestResolver default authorizationRequestBaseUri
#16383 opened Jan 9, 2025 by rwinch
1
Add ClientRegistration.codeChallengeMethod to Enable PKCE in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#16382 opened Jan 9, 2025 by rwinch
1
Support Configuring OAuth2 Login with OAuth2AuthorizationRequestResolver by publishing a Bean in: config An issue in spring-security-config type: enhancement A general enhancement
#16380 opened Jan 8, 2025 by rwinch
1
Add Twitter/X to CommonOAuth2Provider
#16379 opened Jan 8, 2025 by rwinch
Simplify Configuring Log In using Twitter / X v2 APIs in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#16378 opened Jan 8, 2025 by rwinch
6 tasks
6.5.0-M1
@rwinch
1
Default value for ClientRegistration redirect-uri in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#16377 opened Jan 8, 2025 by rwinch 6.5.0-M1
@rwinch
Add support for additional dynamic OIDC Token Exchange Request parameters status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16373 opened Jan 8, 2025 by kistlers
Use dependency injection in webauthn filters to allow for customization status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16369 opened Jan 7, 2025 by levimiller-qhrtech
1
Unable to access encrypted SAML assertions in custom ResponseValidator after upgrade from 6.3 to 6.4 status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16367 opened Jan 6, 2025 by kimgoetzke
Add a Webauth request URL customization feature. status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16361 opened Jan 5, 2025 by swj9707
Add HSTS header also in case of a RequestRejectedException status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16358 opened Jan 2, 2025 by askuri
Spring Security WebAuthn is missing Registration by anonymous user, a use case specified in WebAuthn L2 Subsection 1.3.1 status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16351 opened Dec 30, 2024 by justincranford
Allow configuration of OAuth2LoginAuthenticationFilter.authenticationResultConverter status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16349 opened Dec 28, 2024 by ckalan
2
Sorting RememberMeAuthenticationFilter status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16346 opened Dec 26, 2024 by daromnik
2
[Azure Oauth2] IllegalArgumentException: Attribute value for "xxx" is null status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16340 opened Dec 24, 2024 by jloisel
1
Incorrect kotlin webauthn configuration status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16338 opened Dec 23, 2024 by franticticktick
1
Spring Security IPv6 issue - is there a global config setting? status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16337 opened Dec 23, 2024 by dreamstar-enterprises
5
Multiple /authorize requests in the same session are not supported. Why? status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16336 opened Dec 23, 2024 by pujachowdhary27
1
WebAuthn + Redis doesn't work; Redis defaults to JdkSerializationRedisSerializer, WebAuthn classes lack Serializable interface, WebAuthn mixins missing for GenericJackson2JsonRedisSerializer status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16328 opened Dec 23, 2024 by justincranford
2
Inconsistent constructor declaration on bean with name '_reactiveMethodSecurityConfiguration' status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16325 opened Dec 22, 2024 by eugeniudedin
1
[build] Settings.gradle's logic to handle different buildFile name could result in phantom subproject in: build An issue in the build type: enhancement A general enhancement
#16322 opened Dec 20, 2024 by guesshe
@sjohnr
8
ProTip! Updated in the last three days: updated:>2025-01-06.