Spring Security SEC-2664: ActiveDirectoryLdapAuthenticationProvider should wrap communication exceptions in InternalAuthenticationServiceException

  • 2025-01-18 05:49:24
  • 6813
Pradeep Agrawal (Migrated from SEC-2664) said:Jun 23, 2014 2:53:43 PM org.apache.catalina.core.StandardWrapperValve invo...

Spring Security Idiomatic Kotlin DSL for configuring HTTP security

  • 2025-01-18 05:49:20
  • 1360
there are some exciting options for DSL designers in the Kotlin world. It'd be nice to support a Kotlin-DSL that does in...

Spring Security AuthorizeRequestsDsl doesn't allow HTTP Method to be specified

  • 2025-01-18 05:49:16
  • 1793
SummaryAbstractRequestMatcherRegistry provides the mvcMatchers(HttpMethod method, String... mvcPatterns) function to all...

Spring Security spring security x-frame-option activated but not working

  • 2025-01-18 05:49:13
  • 5964
Hello everybody,I opened a case #20905 on spring boot but they ask me to explain the issue here on spring security.I am ...

Spring Security Open ID Connect ID Token Issuer not validated

  • 2025-01-18 05:49:06
  • 2948
SummaryThe OpenID Connect core specification states, that the issuer in the ID Token must match the issuer in the issuer...

Spring Security Fix Documentation to Refer to BasicAuthenticationFilter

  • 2025-01-18 05:49:02
  • 393
SummaryHere should be BasicAuthenticationFilterActual BehaviorExpected BehaviorConfigurationVersion5.3.1.BUILD-SNAPSHOTS...

Spring Security Create an annotation to check the content type of MultiPartFile.

  • 2025-01-18 05:48:57
  • 1923
According to OWASP standards, it is recommended validate the file type of the uploaded file. So whenever we create a con...

Spring Security SecurityContextServerLogoutHandler does not revoke OAuth2 token

  • 2025-01-18 05:48:54
  • 1343
Spring Security 5.2.2 org.springframework.security.web.server.authentication.logout.SecurityContextServerLogoutHandlerdo...

Spring Security Login success handler should be called in proper context

  • 2025-01-18 05:48:51
  • 5178
Login success handler should be called in proper contextDescribe the bugIf it is called login success handler it is not ...

Spring Security When using stateless session creation policy and form login, a session shouldn't be created when authentication fails

  • 2025-01-18 05:48:49
  • 8330
SummaryWhen using session creation policy = STATELESS and form login, when authentication fails, the default failure han...

Spring Security Rename Preface Section of docs to Introduction

  • 2025-01-18 05:48:44
  • 558
Current 5.3.0 docs has a section called preface that has several chapters of content. It will be clearer to call the sec...

Spring Security Builder for JwtDecoder

  • 2025-01-18 05:48:41
  • 1369
It would be nice to be able to specify validators, converters, etc. without needing to downcast to the implementation.Cu...

Spring Security OpenId Connect: Requesting acr Claims not possible

  • 2025-01-18 05:48:39
  • 6296
There is already issue https://github.com/spring-projects/spring-security/issues/7168 but it is only about using the "ac...

Spring Security Feature Request - Expose Reactor Netty HTTP Client Configuration

  • 2025-01-18 05:48:36
  • 11926
Summary of Issue:The Spring security OAuth2 filter leverages Reactor Netty HTTP Client to send request to IDP. In cloud ...

Spring Security Security configurations causing StackOverflowError

  • 2025-01-18 05:48:33
  • 2699
Using Spring to configure a server application with a PreAuthenticatedAuthenticationProvider, but when running it I end ...

Spring Security Security-related HTTP headers not written if response is committed during INCLUDE dispatch and RequestDispatcher is not obtained via HttpServletRequest object

  • 2025-01-18 05:48:30
  • 6704
SummaryIn #5499 a bug was fixed which caused security-related headers to not appear in HTTP response if that response wa...

Spring Security Dependency issues in resource server

  • 2025-01-18 05:48:27
  • 7941
I am attempting to create a resource server using for OAuth2 using an opaque Token. According to the documentation (http...

Spring Security Allow the ability to configure AuthoritiesMapper in Reactive OAuth2Login

  • 2025-01-18 05:48:24
  • 3707
SummaryI'd like the ability to modify Reactive OAuth2Login's authoritiesMapper.Actual BehaviorCan't find a suitable API ...

Spring Security Session authentication strategy is not called after successfully authentication

  • 2025-01-18 05:48:22
  • 8580
SummarySession authentication strategy is not called after a successfully authentication.I have used the standard strate...

Spring Security Add Flag to enable searching of LDAP groups on subtrees

  • 2025-01-18 05:48:18
  • 2641
SummaryIs not possible to get authorities searching LDAP groups on subtree of the provided groupSearchBase. IMHO this is...
上一页 下一页
.