Skip to content

Issues: spring-projects/spring-security

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Clear current search query, filters, and sorts
615 Open 5,221 Closed
615 Open 5,221 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Issues list

Permission Policy have same details as the Feature Policy status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#17208 opened Jun 5, 2025 by Paragdarade
Add Support DPoP Customization in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#17202 opened Jun 3, 2025 by franticticktick Draft 7.0.0-M1
1
@jgrandja
1
Ensure ID Token is updated after refresh token (Reactive) in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#17188 opened May 30, 2025 by jgrandja 7.0.x
@evgeniycheban
2
Add support setting X509PrincipalExtractor as bean status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#17170 opened May 26, 2025 by franticticktick
1
When updating to 6.5, BeanDefinitionParsingException is referring to old versions status: feedback-provided Feedback has been provided type: enhancement A general enhancement
#17153 opened May 20, 2025 by evandongen
2
Ability to disable anonymous authentication in RSocketSecurity in: config An issue in spring-security-config status: ideal-for-contribution An issue that we actively are looking for someone to help us with type: enhancement A general enhancement
#17132 opened May 18, 2025 by Aaur1s
1
2
Document Application-Scoped Access Tokens for Reactive OAuth2 Client Applications status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#17129 opened May 16, 2025 by FryingHellfish
org.springframework.security.test.web.servlet.response.SecurityMockMvcResultMatchers assertion issue status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#17127 opened May 16, 2025 by OlehPalamarchuk21
Spring Webflux + Spring Security Interaction - Why does the WebFilter run twice? status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#17119 opened May 15, 2025 by dreamstar-enterprises
Document Upgrading Password Encoding in: docs An issue in Documentation or samples status: ideal-for-contribution An issue that we actively are looking for someone to help us with type: enhancement A general enhancement
#17112 opened May 14, 2025 by rwinch
1
1
Jackson 3 Support status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement type: theme An issue that describes a theme for a release
#17109 opened May 14, 2025 by rwinch 7.0.x
Update Contribution Guidelines regarding Stream usage in: docs An issue in Documentation or samples type: enhancement A general enhancement
#17097 opened May 13, 2025 by jzheaux
@jzheaux
Add JdbcAssertingPartyMetadataRepository in: saml2 An issue in SAML2 modules type: enhancement A general enhancement
#17077 opened May 8, 2025 by wapkch Loading… 7.0.0-M1
1
@jzheaux
14
Check for null Principal#getName in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#17068 opened May 7, 2025 by piotrmacha Loading…
1
There is no way to know if a custom logout success handler has been set in: config An issue in spring-security-config type: enhancement A general enhancement
#17043 opened May 6, 2025 by heruan
@jzheaux
4
NimbusJwtEncoder should simplify constructing with javax.security Keys in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: waiting-for-feedback We need additional information before we can continue type: enhancement A general enhancement
#17033 opened May 2, 2025 by surajbh123 Loading… 7.0.x
@jzheaux
87
Deprecate SpringSecurityLdapTemplate in: ldap An issue in spring-security-ldap type: enhancement A general enhancement
#17028 opened May 1, 2025 by jzheaux
5 tasks
7.0.x
1
Authorization + MCP Support type: enhancement A general enhancement type: theme An issue that describes a theme for a release
#16992 opened Apr 24, 2025 by rwinch 7.0.x
@jgrandja
Add Support Extracting DN From X500Principal in: web An issue in web modules (web, webmvc) status: feedback-provided Feedback has been provided type: enhancement A general enhancement
#16984 opened Apr 23, 2025 by franticticktick Loading… 7.0.x
1
@rwinch
12
Replace deprecated #check calls with #authorize in: core An issue in spring-security-core type: enhancement A general enhancement
#16965 opened Apr 18, 2025 by evgeniycheban Loading…
1
@jzheaux
13
Support nested attributes for userNameAttributeName in OAuth2 UserInfo response status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16950 opened Apr 17, 2025 by Ryokki
OAuth2Login behaves differently in MVC and Reactive status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16941 opened Apr 15, 2025 by joaquinjsb
Add support dpop customization in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#16940 opened Apr 15, 2025 by franticticktick 7.0.x
1
@franticticktick
7
Add support one-time token value customization status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16939 opened Apr 15, 2025 by franticticktick
1
4
Replace check calls with authorize status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
#16936 opened Apr 14, 2025 by franticticktick
1
ProTip! Add no:assignee to see everything that’s not assigned.