Skip to content

Pull requests: spring-projects/spring-security

New pull request New
54 Open 4,507 Closed
54 Open 4,507 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Add XML configuration guidance to deprecation warnings status: waiting-for-triage An issue we've not yet triaged
#17753 opened Aug 17, 2025 by khj68 Loading…
1
Fix misleading variable name in authentication filter status: waiting-for-triage An issue we've not yet triaged
#17751 opened Aug 16, 2025 by jaehwan02 Loading…
Remove unused import status: waiting-for-triage An issue we've not yet triaged
#17750 opened Aug 16, 2025 by ngocnhan-tran1996 Loading…
Update servlet test method docs to use include-code status: waiting-for-triage An issue we've not yet triaged
#17749 opened Aug 16, 2025 by jkuhel Loading…
Added the ability to pass in a parameter when using JwtIssuerAuthenticationManagerResolver status: waiting-for-triage An issue we've not yet triaged
#17748 opened Aug 16, 2025 by jsight Loading…
Bump org.springframework:spring-framework-bom from 7.0.0-M7 to 7.0.0-M8 in: build An issue in the build type: dependency-upgrade A dependency upgrade
#17724 opened Aug 14, 2025 by dependabot bot Loading… 7.0.0-M2
@jzheaux
Polish EnableWeb(Flux)Security javadoc status: waiting-for-triage An issue we've not yet triaged
#17705 opened Aug 14, 2025 by ngocnhan-tran1996 Loading…
1
Prevent caching of non-document requests in HttpSessionRequestCache in: web An issue in web modules (web, webmvc) status: waiting-for-feedback We need additional information before we can continue type: enhancement A general enhancement
#17687 opened Aug 11, 2025 by therepanic Loading…
1
@jzheaux
3
Allow authenticationManagerResolver to take precedence over jwt/opaqueToken status: waiting-for-triage An issue we've not yet triaged
#17676 opened Aug 10, 2025 by academey Loading…
1
Fix OAuth2 client-secret encoding with Base64 padding status: waiting-for-triage An issue we've not yet triaged
#17674 opened Aug 9, 2025 by academey Loading…
1 of 4 tasks
1
Add AuthorizationManagerFactory
#17673 opened Aug 8, 2025 by sjohnr Draft
29
Change @Bean method signature to return RsaKeyConversionServicePostProcessor instead of BeanFactoryPostProcessor in: config An issue in spring-security-config status: waiting-for-feedback We need additional information before we can continue type: enhancement A general enhancement
#17672 opened Aug 8, 2025 by quaff Loading…
@jzheaux
2
Align NimbusJwtDecoder HTTP timeout defaults with Nimbus by setting to 500ms in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: waiting-for-feedback We need additional information before we can continue type: enhancement A general enhancement
#17669 opened Aug 7, 2025 by frido37 Loading…
@jzheaux
5
Fix ChannelProcessingFilter to skip decision if response already committed status: waiting-for-triage An issue we've not yet triaged
#17668 opened Aug 7, 2025 by therepanic Loading…
1
1
Warning when EnableTransactionManagement has lower precedence than EnableMethodSecurity status: blocked An issue that's blocked on an external project change
#17665 opened Aug 5, 2025 by yybmion Loading…
1
@jzheaux
1
Validate account status in OneTimeTokenAuthenticationProvider status: waiting-for-triage An issue we've not yet triaged
#17656 opened Aug 2, 2025 by therepanic Loading…
1
4
Add Referrer-Policy header to default security headers status: waiting-for-triage An issue we've not yet triaged
#17606 opened Jul 23, 2025 by therepanic Loading…
1
Remove PortResolver status: waiting-for-triage An issue we've not yet triaged
#17524 opened Jul 14, 2025 by kse-music Loading…
1
Add createdTime field to SessionInformation in: core An issue in spring-security-core type: enhancement A general enhancement
#17513 opened Jul 13, 2025 by therepanic Loading…
1
@jgrandja
3
PKCE configuration - enabled by default in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: breaks-passivity A change that breaks passivity with the previous release
#17507 opened Jul 10, 2025 by rohan-naik07 Loading…
@jgrandja
13
Add lambda DSL method for featurePolicy status: waiting-for-triage An issue we've not yet triaged
#17492 opened Jul 7, 2025 by therepanic Loading…
1
2
Implement equals and hashCode in OidcIdToken status: waiting-for-triage An issue we've not yet triaged
#17485 opened Jul 4, 2025 by therepanic Loading…
1
2
Remove ACL access implementations in favor of AclPermissionEvaluator in: acl An issue in spring-security-acl status: blocked An issue that's blocked on an external project change type: breaks-passivity A change that breaks passivity with the previous release
#17475 opened Jul 3, 2025 by therepanic Loading…
1
@jzheaux
1
Change FilterBasedLdapUserSearch to use LdapClient status: waiting-for-triage An issue we've not yet triaged
#17384 opened Jun 29, 2025 by therepanic Loading…
1
Allow specifying a ServerAuthenticationConverter for x509() status: waiting-for-triage An issue we've not yet triaged
#17382 opened Jun 27, 2025 by blake-bauman Loading…
ProTip! no:milestone will show everything without a milestone.