Skip to content

6.5.x

No due date 0% complete
Add RelayState-based Authentication Request Respository in: saml2 An issue in SAML2 modules type: enhancement A general enhancement
#14793 opened Mar 22, 2024 by shardasud16
Deprecate PortResolver type: task A general task
#15972 opened Oct 22, 2024 by rwinch
Add support for access token in body parameter as per rfc 6750 Sec. 2.2 in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#15819 opened Sep 17, 2024 by jonah1und1 Review required
Support Reactive One-Time Tokens in a Clustered Environment in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#15901 opened Oct 11, 2024 by franticticktick
Consider aligning OAuth 2.0 Access Token Response parsing in BodyExtractor in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#16001 opened Oct 25, 2024 by sjohnr
Consider Supporting Externalized OpenSAML Initialization in: saml2 An issue in SAML2 modules type: enhancement A general enhancement
#14656 opened Feb 27, 2024 by sumeetpri
Consider removing one level of the OIDC Backchannel Logout DSL in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#15817 opened Sep 16, 2024 by jzheaux
ServerBearerTokenAuthenticationConverter does not support form encoded body parameter in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: duplicate A duplicate of another issue type: enhancement A general enhancement
#15818 opened Sep 17, 2024 by jonah1und1
Make name resolution configurable in OpenSamlLogoutRequestValidator in: saml2 An issue in SAML2 modules type: enhancement A general enhancement
#12128 opened Nov 2, 2022 by palakova
Improve Integration between Authorized Objects and Spring MVC in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16057 opened Nov 11, 2024 by jzheaux
2 tasks
Add support for requesting protected resources with RestClient similar to ServletBearerExchangeFilterFunction in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#15820 opened Sep 17, 2024 by azizabah
Improve startup validation of request matchers in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16135 opened Nov 20, 2024 by jzheaux
Expose getter for nameAttributeKey in OAuth2AuthenticatedPrincipal in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: feedback-provided Feedback has been provided type: enhancement A general enhancement
#16003 opened Oct 26, 2024 by andreblanke Review required
Include Compromised Password Information in UserDetails in: core An issue in spring-security-core type: enhancement A general enhancement
#15745 opened Sep 5, 2024 by marcusdacoregio
Spring Security's Filters and WebFilters Automatically Registered by Spring Boot in: web An issue in web modules (web, webmvc) type: bug A general bug
#16222 opened Dec 5, 2024 by rwinch
Simplify Custom Handling for Compromised Passwords in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16223 opened Dec 5, 2024 by rwinch
Prepare for 2FA in: core An issue in spring-security-core type: enhancement A general enhancement
#11364 opened Jun 10, 2022 by rwinch
Use Include for All Samples in Documentation in: docs An issue in Documentation or samples type: enhancement A general enhancement
#16226 opened Dec 5, 2024 by rwinch
Sample Code in Documentation Should Link to a Complete Sample in: docs An issue in Documentation or samples type: enhancement A general enhancement
#16227 opened Dec 5, 2024 by rwinch
Add "Best Match" based Web Authorization Rules in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16249 opened Dec 9, 2024 by rwinch
Add @AuthorizeRequestMapping annotation in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16250 opened Dec 9, 2024 by rwinch
Automatically apply Customizer Beans to the Security DSL in: config An issue in spring-security-config type: enhancement A general enhancement
#16258 opened Dec 11, 2024 by rwinch
Throw custom Exception when the HTTP Method is rejected in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#12191 opened Nov 10, 2022 by brandon1024
Consider adding ClientRegistrationIdResolver to ExchangeFilterFunctions in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#15825 opened Sep 18, 2024 by sjohnr
Consider adding PrincipalResolver to ExchangeFilterFunctions in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#16284 opened Dec 13, 2024 by sjohnr
Consider adding support for pushed authorization requests (PAR, RFC 9126) in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#11301 opened May 31, 2022 by dpulrichth
Prepare Request Matching for Spring Framework Changes in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16417 opened Jan 14, 2025 by jzheaux
8 tasks
Simplify Configuring Log In using Twitter / X v2 APIs in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#16378 opened Jan 8, 2025 by rwinch
2 of 7 tasks
Default value for ClientRegistration redirect-uri in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#16377 opened Jan 8, 2025 by rwinch
Deprecate usages of PathMatcher in Web Socket support in: messaging An issue in spring-security-messaging type: enhancement A general enhancement
#16500 opened Jan 29, 2025 by jzheaux
3 tasks
Declare authorization rules one at a time in: config An issue in spring-security-config type: enhancement A general enhancement
#16509 opened Jan 30, 2025 by jzheaux
Send a static message from HttpStatusServerAccessDeniedHandler in: web An issue in web modules (web, webmvc) status: ideal-for-contribution An issue that we actively are looking for someone to help us with type: enhancement A general enhancement
#16514 opened Jan 31, 2025 by sjohnr
Update HandlerMappingIntrospector Usage in CORS support in: config An issue in spring-security-config type: enhancement A general enhancement
#16501 opened Jan 29, 2025 by jzheaux
Add PathPatternRequestMatcher in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16429 opened Jan 16, 2025 by jzheaux
Simplify Specifying servletPath in the Java DSL in: config An issue in spring-security-config type: enhancement A general enhancement
#16430 opened Jan 16, 2025 by jzheaux
Add PathPatternRequestMatcher in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16499 opened Jan 29, 2025 by jzheaux Review required
Add BadCredentialsException to OneTimeTokenAuthenticationProvider in: core An issue in spring-security-core type: enhancement A general enhancement
#16506 opened Jan 30, 2025 by franticticktick Review required