玖涯软件开发|java/go/python

Spring Security Store one request by default in WebSessionOAuth2ServerAuthorizationRequestRepository

Backport of gh-9912Comment From: sjohnrClosed via ee9c8e2fd0f0345b5f130663138a396b98cd9418 (and b6ae11295fcc4527ddb3c2c8...

Spring Security SEC-2989: DefaultMethodSecurityExpressionHandler should use the rolePrefix set in RoleHierarchy when available.

Srikara Rao (Migrated from SEC-2989) said:We ran into this issue as we upgraded from version 3.2.7 to 4.0.1. In version ...

Spring Security A new version problem

addFilterBefore:v2.4.6:v2.5.0: There is no OncePerRequestFilter in this.filterOrders NPEIf it is a change, please tell m...

Spring Security Spring Security MessageSource files lack of 'ExceptionTranslationFilter.insufficientAuthentication'

this.messages.getMessage("ExceptionTranslationFilter.insufficientAuthentication", "Full authentication is required to ac...

Spring Security Allow configuration of AuthenticationManager in saml2Login Kotlin DSL

The structure should look like thishttp { saml2Login { authenticationManager = ProviderManager(authenticationP...

Spring Security When using custom MVC servlet path and jar packaging, form login page loading leads to infinite redirects

I'm working with an old project that uses a custom MVC servlet path, was packaged as a war, and deployed in a tomcat. I ...

Spring Security HttpBasicConfigurer is not considering custom AuthenticationDetailsSource

I have defined one custom AuthenticationDetailsSource and I wanted to use the same for both HttpBasic Auth and FormLogin...

Spring Security Ability to set failureUrl and failureHandler

Expected BehaviorBeing able to set failureHandler and failureUrl in AbstractAuthenticationFilterConfigurer without reset...

Spring Security spring-security-config kotlin-stdlib-jdk8 dependency isn't optional

Describe the bugspring-security-config 5.4.x and prior had <optional>true</optional> dependencies on Kotlin....

Spring Security Spring Security Guide link returns 404

SummaryHey spring team! Im not sure whether this is the right place to report this small issue. Shortly said, I tried si...

Spring Security SEC-3199: security:jee preauthentication and SecurityContextHolderAwareRequestWrapper do not play nice together

Michael Osipov (Migrated from SEC-3199) said:If you have configured to use security:jee and likely expect request#getUse...

Spring Security SEC-3139: Anonymous authentication token not passed to Controller

James Garrison (Migrated from SEC-3139) said:Consider the following RequestMapping in a SpringMVC controller:@RequestMap...

Spring Security Travis Builds Are Stalling

SummaryIt appears our builds are stalling on Travis with:08:24:59 INFO http://localhost:40322> Task :spring-securi...

Spring Security Clarify quick start section in README

The quick start section of the README points to https://docs.spring.io/spring-security/site/docs/current/reference/htmls...

Spring Security SEC-3022: GlobalMethodSecurityConfiguration should autowired RoleHierarchy as it does for PermissionEvaluator

Adrien SAUVEZ (Migrated from SEC-3022) said:In GlobalMethodSecurityConfiguration.setPermissionEvaluator(), the config se...