Skip to content

Issues: spring-projects/spring-security

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

992 Open 11,771 Closed
992 Open 11,771 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Method Security does not switch to Interface Proxies for final Classes status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16707 opened Mar 8, 2025 by rwinch
1
AuthorizationProxyFactory.proxy should return the same type that is passed into the method status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16706 opened Mar 7, 2025 by rwinch 7.0.0-M1
1
Add a Null-Returning MethodAuthorizationDeniedHandler in: core An issue in spring-security-core type: enhancement A general enhancement
#16705 opened Mar 7, 2025 by jzheaux
@jzheaux @kiruthiga1793
2
filter is applied to paths that should be allowed in http security configuration with new SS 6.4.3 status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16703 opened Mar 6, 2025 by gigi888
WebFlux reference links to Servlet docs status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16702 opened Mar 6, 2025 by cselagea
Repeated text in servlet X.509 authentication docs status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16701 opened Mar 6, 2025 by cselagea
AuthorizationDenied and Granted EventListeners Should Support Generics in: core An issue in spring-security-core type: enhancement A general enhancement
#16700 opened Mar 6, 2025 by jzheaux
@jzheaux @franticticktick
1
[Docs] Broken link on Spring MVC Test Integration page status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16699 opened Mar 6, 2025 by jang-namu
oauth2: make it less painful to use a proxy status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16694 opened Mar 3, 2025 by thda
Add meaningful toString/getIpAddress methods to org.springframework.security.web.util.matcher.IpAddressMatcher status: ideal-for-contribution An issue that we actively are looking for someone to help us with type: enhancement A general enhancement
#16693 opened Mar 3, 2025 by transentia
1
Is there any plan to build for iOS targets in order to be used in KMP projects? status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16688 opened Mar 2, 2025 by graial
Logging in with passkeys bypasses maximum session restriction status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16685 opened Mar 1, 2025 by ziqin
Bug: Jackson Mixin Allowlist Keys in Kotlin are Lowercase Primitive Names Instead of Fully Qualified Class Names status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16684 opened Mar 1, 2025 by CHOICORE
Support for using Azure WorkloadIdentity with Oauth2 Authorization Code Grant Flow status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16677 opened Feb 28, 2025 by cprutle
Use FormPostRedirectStrategy in SAML 2.0 Filters in: saml2 An issue in SAML2 modules type: enhancement A general enhancement
#16673 opened Feb 27, 2025 by jzheaux
Deprecate Authentication#setAuthenticated type: enhancement A general enhancement
#16668 opened Feb 26, 2025 by jzheaux
3 tasks
Deprecate ConfigAttribute in: core An issue in spring-security-core type: enhancement A general enhancement
#16667 opened Feb 26, 2025 by jzheaux
4 tasks
6.5.x
@jzheaux
Consider adding support for automatic context-propagation with Micrometer in: core An issue in spring-security-core in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#16665 opened Feb 26, 2025 by sjohnr
@sjohnr
Spring Security HTTP headers not added for large files status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16660 opened Feb 26, 2025 by cartbar
2
Error in Web Application Security documentation in: docs An issue in Documentation or samples status: ideal-for-contribution An issue that we actively are looking for someone to help us with type: bug A general bug
#16659 opened Feb 26, 2025 by cartbar 6.3.x
2
Using XML configuration, separate HTTP elements share authentication status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16658 opened Feb 26, 2025 by cartbar
HttpSessionRequestCache#getMatchingRequest passes decoded Request URL to UriComponentsBuilder status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16656 opened Feb 26, 2025 by ClausMie
2
OidcIdTokenDecoderFactory caches JwtDecoders and ignores ClientRegistration updates status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16655 opened Feb 26, 2025 by iigolovko
CachingUserDetailsService doesn't properly support expiraton of cache status: waiting-for-triage An issue we've not yet triaged type: bug A general bug
#16645 opened Feb 24, 2025 by ugard
Deprecate AntPathRequestMatcher
#16632 opened Feb 21, 2025 by jzheaux
ProTip! Type g i on any issue or pull request to go back to the issue listing page.