verson: springboot2.4.0look this org.springframework.security.authentication.dao.AbstractUserDetailsAuthenticationProvid...

It is quite hard to have multiple converters extract granted authorities from JWT tokens.In the case of an authorization...

Describe the bugWith kotlin 1.4 explicit api mode enabled explicit api mode I could not compile with Spring boot 2.4.0 a...

NOTE: This issue is specific to IntelliJ.IntelliJ reports the following error:The CheckStyle rules file could not be par...

Expected BehaviorOAuth2AuthorizedClientService#saveAuthorizedClient accepts OAuth2AuthorizedClient authorizedClient and ...

Describe the bugGot invalid url If defining for example json-string as additional parameter for OAuth2AuthorizationReque...

I have spring boot application with spring boot configuration.spring: security: oauth2: client: provider...

Summaryspring-security-oauth2-client uses a RestTemplate for openid/oauth Discovery that is not configurable. This is un...

Hello everybodySummaryI currently use spring security with the oauth2 provider behind corporate firewall. The oauth2-jos...

Describe the bugWe are integrating with an Oauth2 provider. I need to send the user's email as a "login_hint" additiona...

Springboot version2.3.4.RELEASEJetty versionjetty-9.4.31.v20200723; built: 2020-07-23T17:57:36.812Z; git: 450ba27947e13e...

Expected BehaviorSimilar to the WebFlux security configuration, we should add the capability to configure HTTP Security ...

As a developer that needs to fine tune the JWT decoding process, it would be useful if this class and its members JwtDe...

Initially SecurityWebApplicationContextUtils copied code from WebApplicationContextUtils.findWebApplicationContext to en...

When a web application is configured for a browser-based authentication mechanism in addition to Resource Server, empty ...

Current BehaviorEach of JwtIssuerAuthenticationManagerResolver and JwtIssuerReactiveAuthenticationManagerResolver uses e...

EnhancementAllow extension of AbstractWebClientReactiveOAuth2AccessTokenResponseClient by class outside the package.Allo...

SummaryThe Pbkdf2PasswordEncoder class always generates an 8-byte salt. NIST Special Publication 800-132 section 5.1 cal...

I have a problem in spring security, when I login successfully, the home page that I've set, does not load and the page ...

I find that this previously closed issue #4020 is back. https://github.com/spring-projects/spring-security/issues/4020I...