Skip to content

Issues: spring-projects/spring-security

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

972 Open 11,713 Closed
972 Open 11,713 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Unable to generate metadata file redirecting to auth route status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16504 opened Jan 30, 2025 by nmanthena18
Update HandlerMappingIntrospector Usage in CORS support
#16501 opened Jan 29, 2025 by jzheaux
Deprecate usages of PathMatcher in Web Socket support in: messaging An issue in spring-security-messaging type: enhancement A general enhancement
#16500 opened Jan 29, 2025 by jzheaux
3 tasks
6.5.x
Method Security Templates Do Not Use Deep Non-Aliased Attributes in: core An issue in spring-security-core type: bug A general bug
#16498 opened Jan 28, 2025 by rwinch
@jzheaux
Improve user not found exception message in InMemoryUserDetailsManager in: core An issue in spring-security-core type: enhancement A general enhancement
#16497 opened Jan 28, 2025 by jzheaux
@Tejas-Teju
2
AbstractUserDetailsAuthenticationProvider should not swallow UsernameNotFoundException in: web An issue in web modules (web, webmvc) status: first-timers-only An issue that can only be worked on by brand new contributors type: enhancement A general enhancement
#16496 opened Jan 28, 2025 by jzheaux
AbstractUserDetailsAuthenticationProvider should lazily compose debug message in: web An issue in web modules (web, webmvc) status: first-timers-only An issue that can only be worked on by brand new contributors type: enhancement A general enhancement
#16495 opened Jan 28, 2025 by jzheaux
One Time Token user lookup should fail with BadCredentialsException status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16494 opened Jan 28, 2025 by jzheaux
AntPathRequestMatcher and MvcRequestMatcher have inconsistent behaviour against requests with null method status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16491 opened Jan 27, 2025 by symposion
@jzheaux
Default Log In Page should always be generic message status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16484 opened Jan 24, 2025 by rwinch
One Time Token should not be created if user does not exist in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16483 opened Jan 24, 2025 by rwinch
5 of 6 tasks
@rwinch
Make WebAuthnAuthenticationTokenRequest Serializable in: web An issue in web modules (web, webmvc) type: bug A general bug
#16481 opened Jan 24, 2025 by jzheaux 6.4.3
@franticticktick
3
One Time Token Error Message in: web An issue in web modules (web, webmvc) type: bug A general bug
#16473 opened Jan 23, 2025 by danvega 6.4.3
@rwinch
1
ClientRegistrations class's OpenID Provider Configuration Validation does not conform to specification in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: waiting-for-feedback We need additional information before we can continue type: bug A general bug
#16460 opened Jan 21, 2025 by abchau
@sjohnr
2
SAML SSO Service preferred binding type from IDP metadata in: saml2 An issue in SAML2 modules status: waiting-for-feedback We need additional information before we can continue type: enhancement A general enhancement
#16454 opened Jan 20, 2025 by codemasterover9000
@jzheaux
1
In the UsernamePasswordAuthenticationFilter, the authRequest is added as an attribute to the HttpServletRequest. in: core An issue in spring-security-core status: feedback-provided Feedback has been provided type: enhancement A general enhancement
#16444 opened Jan 19, 2025 by amm0124
@rwinch
2
Replace SpringUtils in DelegatingPasswordEncoder.UnmappedIdPasswordEncoder in: crypto An issue in spring-security-crypto type: enhancement A general enhancement
#16442 opened Jan 18, 2025 by ChristianHoesel
1
@sjohnr
3
ConcurrentsessionControlAuthenticationStrategy has a problem? SetMaximumSessions(1), how many logins are needed? in: web An issue in web modules (web, webmvc) status: waiting-for-feedback We need additional information before we can continue type: enhancement A general enhancement
#16437 opened Jan 17, 2025 by Crazy-GrowUp
@sjohnr
2
Add serialize/deserialize PublicKeyCredentialCreationOptions support with ObjectMapper status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16434 opened Jan 16, 2025 by rwinch
1
Add serialize/deserialize PublicKeyCredentialRequestOptions support with ObjectMapper status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16433 opened Jan 16, 2025 by rwinch
1
Make PublicKeyCredentialCreationOptions Serializable status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16431 opened Jan 16, 2025 by rwinch
1
Simplify Specifying servletPath in the Java DSL in: config An issue in spring-security-config type: enhancement A general enhancement
#16430 opened Jan 16, 2025 by jzheaux 6.5.0-M2
@jzheaux
Add PathPatternRequestMatcher in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16429 opened Jan 16, 2025 by jzheaux 6.5.0-M2
@jzheaux
Prepare Request Matching for Spring Framework Changes in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16417 opened Jan 14, 2025 by jzheaux
8 tasks
6.5.x
@jzheaux
2
Display default login page with only one-time token login status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16414 opened Jan 14, 2025 by Kehrlann
ProTip! Type g p on any issue or pull request to go back to the pull request listing page.