Skip to content

Issues: spring-projects/spring-security

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

980 Open 11,762 Closed
980 Open 11,762 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Use FormPostRedirectStrategy in SAML 2.0 Filters in: saml2 An issue in SAML2 modules type: enhancement A general enhancement
#16673 opened Feb 27, 2025 by jzheaux
Deprecate Authentication#setAuthenticated type: enhancement A general enhancement
#16668 opened Feb 26, 2025 by jzheaux
3 tasks
Deprecate ConfigAttribute in: core An issue in spring-security-core type: enhancement A general enhancement
#16667 opened Feb 26, 2025 by jzheaux
7 tasks
6.5.x
Consider adding support for automatic context-propagation with Micrometer in: core An issue in spring-security-core in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16665 opened Feb 26, 2025 by sjohnr
@sjohnr
Spring Security HTTP headers not added for large files status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16660 opened Feb 26, 2025 by cartbar
Error in Web Application Security documentation in: docs An issue in Documentation or samples status: ideal-for-contribution An issue that we actively are looking for someone to help us with type: bug A general bug
#16659 opened Feb 26, 2025 by cartbar 6.3.x
1
Using XML configuration, separate HTTP elements share authentication status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16658 opened Feb 26, 2025 by cartbar
HttpSessionRequestCache#getMatchingRequest passes decoded Request URL to UriComponentsBuilder status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16656 opened Feb 26, 2025 by ClausMie
OidcIdTokenDecoderFactory caches JwtDecoders and ignores ClientRegistration updates status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16655 opened Feb 26, 2025 by iigolovko
CachingUserDetailsService doesn't properly support expiraton of cache status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16645 opened Feb 24, 2025 by ugard
Deprecate AntPathRequestMatcher
#16632 opened Feb 21, 2025 by jzheaux
Deprecate MvcRequestMatcher
#16631 opened Feb 21, 2025 by jzheaux
MissingCsrfTokenException with OIDC backchannel logout status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16630 opened Feb 21, 2025 by aelillie
1
Add support for removing OIDC user session with Spring Session in OIDC backchannel logout status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16629 opened Feb 21, 2025 by aelillie
Add support for Spring Session Cookie in OIDC Backchannel logout status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16627 opened Feb 21, 2025 by aelillie
PreAuthorise throws AuthenticationCredentialsNotFoundException when a UUID finishes with a space. status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16626 opened Feb 21, 2025 by hjed
Upgrade release for dependency status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16624 opened Feb 20, 2025 by mantuspglobal
oauth2Login DSL fails when passing a SecurityContextRepository status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16623 opened Feb 19, 2025 by marcusdacoregio
Add handler reference by name to HandleAuthorizationDenied status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16622 opened Feb 19, 2025 by gbaso
Allow setting Oauth 2.0 Resource Indicators in Oauth client calls status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16605 opened Feb 14, 2025 by pat-mccusker
Update WebAuthn Test Objects Class Names status: first-timers-only An issue that can only be worked on by brand new contributors type: enhancement A general enhancement
#16604 opened Feb 14, 2025 by jzheaux
5 tasks
2
Add claim path delimiter configuration for JwtGrantedAuthoritiesConverter status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16603 opened Feb 14, 2025 by BeforeOleg
DefaultLoginPageGeneratingFilter: PASSKEY_FORM_TEMPLATE invalid html tag closure status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16600 opened Feb 14, 2025 by AB-xdev
1
Add PermitAll and DenyAll AuthorizationManager instances in: core An issue in spring-security-core type: enhancement A general enhancement
#16590 opened Feb 14, 2025 by jzheaux
1
@franticticktick
2
Wrong import for NonNull in DefaultSecurityFilterChain status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16572 opened Feb 11, 2025 by jearton
ProTip! Updated in the last three days: updated:>2025-02-25.