Skip to content

Pull requests: spring-projects/spring-security

New pull request New
25 Open 3,499 Closed
25 Open 3,499 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Do not validate parameters in ServerBearerTokenAuthenticationConverter and DefaultBearerTokenResolver if not enabled in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: bug A general bug
#16039 opened Nov 5, 2024 by jonah1und1 Loading…
@sjohnr
6
Encode clientId and clientSecret for OpaqueTokenIntrospector and ReactiveOpaqueTokenIntrospector status: waiting-for-triage An issue we've not yet triaged
#16008 opened Oct 29, 2024 by ngocnhan-tran1996 Loading…
1
Fix not exist class in WebFilterChainProxy java doc status: waiting-for-triage An issue we've not yet triaged
#16004 opened Oct 27, 2024 by kse-music Loading…
Expose getter for nameAttributeKey in OAuth2AuthenticatedPrincipal in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#16003 opened Oct 26, 2024 by andreblanke Loading…
@jzheaux
4
Improve Error Message for Conflicting Filter Chains in: core An issue in spring-security-core type: enhancement A general enhancement
#15992 opened Oct 25, 2024 by jzheaux Loading…
1
@jzheaux
Add UserDetailsService Constructor in: core An issue in spring-security-core type: enhancement A general enhancement
#15984 opened Oct 24, 2024 by jzheaux Loading… 6.5.x
1
@jzheaux
dark-mode problem due to transparency has been fixed in: docs An issue in Documentation or samples status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#15983 opened Oct 24, 2024 by best-rion Loading…
1
@jzheaux
7
webauthn: use DefaultResourcesFilter without reflection in: web An issue in web modules (web, webmvc) status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#15970 opened Oct 22, 2024 by Kehrlann Loading…
@rwinch
webauthn: add webdriver test in: web An issue in web modules (web, webmvc) status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#15969 opened Oct 22, 2024 by Kehrlann Loading…
@rwinch
fix assertions in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: waiting-for-feedback We need additional information before we can continue type: enhancement A general enhancement
#15937 opened Oct 17, 2024 by dcolazin Loading…
@sjohnr
4
Add support for custom grant types in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#15884 opened Oct 7, 2024 by sjohnr Loading…
1
@sjohnr
Remove unnecessary parentheses and add static final field MockPortResolver#getServerPort in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#15875 opened Oct 4, 2024 by nomoreFt Loading…
@sjohnr
Avoid UriComponentsBuilder.fromUri type: bug A general bug
#15853 opened Sep 25, 2024 by bodograumann Loading…
1
@jzheaux
10
Add support for access token in body parameter as per rfc 6750 Sec. 2.2 in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#15819 opened Sep 17, 2024 by jonah1und1 Loading… 6.5.x
@sjohnr
12
Improve documentation about CredentialsContainer in: docs An issue in Documentation or samples status: waiting-for-feedback We need additional information before we can continue type: enhancement A general enhancement
#15554 opened Aug 11, 2024 by Chu3laMan Loading…
@sjohnr
7
Post code suggestions on PRs with format issues for: team-attention This ticket should be discussed as a team before proceeding in: build An issue in the build type: enhancement A general enhancement
#15477 opened Jul 27, 2024 by timtebeek Loading…
@jzheaux
7
Add support customizing the serverLogoutSuccessHandler for OidcClientInitiatedServerLogoutSuccessHandler in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#14808 opened Mar 27, 2024 by franticticktick Loading…
1
@jzheaux
7
Add BearerTokenAuthenticationConverter in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#14791 opened Mar 22, 2024 by franticticktick Loading…
1
@jzheaux
6
Use relative URLs in /login redirects status: waiting-for-triage An issue we've not yet triaged
#14714 opened Mar 10, 2024 by Pistolnik Loading…
1
Send saml logout response even when validation errors happen in: saml2 An issue in SAML2 modules status: feedback-provided Feedback has been provided type: enhancement A general enhancement
#14676 opened Mar 3, 2024 by 1livv Loading…
@jzheaux
16
Improve JdbcUserDetailsManager.userExists method in: core An issue in spring-security-core type: breaks-passivity A change that breaks passivity with the previous release type: enhancement A general enhancement
#14649 opened Feb 24, 2024 by Shenker93 Loading… 7.0.0-M1
1
Remove deprecated methods from CookieServerCsrfTokenRepository in: web An issue in web modules (web, webmvc) type: breaks-passivity A change that breaks passivity with the previous release type: enhancement A general enhancement
#14139 opened Nov 14, 2023 by milaneuh Loading… 7.0.0-M1
5
Allow at+jwt, according to RFC-9068 in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: duplicate A duplicate of another issue status: waiting-for-feedback We need additional information before we can continue type: enhancement A general enhancement
#13186 opened May 16, 2023 by ymajoros Loading…
@jzheaux
3
TestCsrfTokenRepository should delegate to the configured CsrfTokenRepository status: waiting-for-triage An issue we've not yet triaged
#13082 opened Apr 24, 2023 by chschu Draft
Decouple SAML 2.0 Single Logout from the authenticated principal's type in: saml2 An issue in SAML2 modules status: duplicate A duplicate of another issue type: enhancement A general enhancement
#11338 opened Jun 6, 2022 by chschu Loading…
@jzheaux
8
ProTip! Exclude everything labeled bug with -label:bug.