-
Notifications
You must be signed in to change notification settings - Fork 6.1k
Pull requests: spring-projects/spring-security
Author
Label
Projects
Milestones
Reviews
Assignee
Sort
Pull requests list
Add XML configuration guidance to deprecation warnings
status: waiting-for-triage
An issue we've not yet triaged
#17753
opened Aug 17, 2025 by
khj68
Loading…
Fix misleading variable name in authentication filter
status: waiting-for-triage
An issue we've not yet triaged
#17751
opened Aug 16, 2025 by
jaehwan02
Loading…
Remove unused import
status: waiting-for-triage
An issue we've not yet triaged
#17750
opened Aug 16, 2025 by
ngocnhan-tran1996
Loading…
Update servlet test method docs to use include-code
status: waiting-for-triage
An issue we've not yet triaged
#17749
opened Aug 16, 2025 by
jkuhel
Loading…
Added the ability to pass in a parameter when using JwtIssuerAuthenticationManagerResolver
status: waiting-for-triage
An issue we've not yet triaged
#17748
opened Aug 16, 2025 by
jsight
Loading…
Bump org.springframework:spring-framework-bom from 7.0.0-M7 to 7.0.0-M8
in: build
An issue in the build
type: dependency-upgrade
A dependency upgrade
Polish An issue we've not yet triaged
EnableWeb(Flux)Security
javadoc
status: waiting-for-triage
#17705
opened Aug 14, 2025 by
ngocnhan-tran1996
Loading…
Prevent caching of non-document requests in HttpSessionRequestCache
in: web
An issue in web modules (web, webmvc)
status: waiting-for-feedback
We need additional information before we can continue
type: enhancement
A general enhancement
#17687
opened Aug 11, 2025 by
therepanic
Loading…
Allow authenticationManagerResolver to take precedence over jwt/opaqueToken
status: waiting-for-triage
An issue we've not yet triaged
#17676
opened Aug 10, 2025 by
academey
Loading…
Fix OAuth2 client-secret encoding with Base64 padding
status: waiting-for-triage
An issue we've not yet triaged
#17674
opened Aug 9, 2025 by
academey
Loading…
1 of 4 tasks
Change @Bean method signature to return RsaKeyConversionServicePostProcessor instead of BeanFactoryPostProcessor
in: config
An issue in spring-security-config
status: waiting-for-feedback
We need additional information before we can continue
type: enhancement
A general enhancement
#17672
opened Aug 8, 2025 by
quaff
Loading…
Align NimbusJwtDecoder HTTP timeout defaults with Nimbus by setting to 500ms
in: oauth2
An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose)
status: waiting-for-feedback
We need additional information before we can continue
type: enhancement
A general enhancement
#17669
opened Aug 7, 2025 by
frido37
Loading…
Fix An issue we've not yet triaged
ChannelProcessingFilter
to skip decision if response already committed
status: waiting-for-triage
#17668
opened Aug 7, 2025 by
therepanic
Loading…
Warning when EnableTransactionManagement has lower precedence than EnableMethodSecurity
status: blocked
An issue that's blocked on an external project change
#17665
opened Aug 5, 2025 by
yybmion
Loading…
Validate account status in OneTimeTokenAuthenticationProvider
status: waiting-for-triage
An issue we've not yet triaged
#17656
opened Aug 2, 2025 by
therepanic
Loading…
Add Referrer-Policy header to default security headers
status: waiting-for-triage
An issue we've not yet triaged
#17606
opened Jul 23, 2025 by
therepanic
Loading…
Remove PortResolver
status: waiting-for-triage
An issue we've not yet triaged
#17524
opened Jul 14, 2025 by
kse-music
Loading…
Add An issue in spring-security-core
type: enhancement
A general enhancement
createdTime
field to SessionInformation
in: core
#17513
opened Jul 13, 2025 by
therepanic
Loading…
PKCE configuration - enabled by default
in: oauth2
An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose)
type: breaks-passivity
A change that breaks passivity with the previous release
#17507
opened Jul 10, 2025 by
rohan-naik07
Loading…
Add lambda DSL method for featurePolicy
status: waiting-for-triage
An issue we've not yet triaged
#17492
opened Jul 7, 2025 by
therepanic
Loading…
Implement equals and hashCode in An issue we've not yet triaged
OidcIdToken
status: waiting-for-triage
#17485
opened Jul 4, 2025 by
therepanic
Loading…
Remove ACL access implementations in favor of An issue in spring-security-acl
status: blocked
An issue that's blocked on an external project change
type: breaks-passivity
A change that breaks passivity with the previous release
AclPermissionEvaluator
in: acl
#17475
opened Jul 3, 2025 by
therepanic
Loading…
Change An issue we've not yet triaged
FilterBasedLdapUserSearch
to use LdapClient
status: waiting-for-triage
#17384
opened Jun 29, 2025 by
therepanic
Loading…
Allow specifying a ServerAuthenticationConverter for x509()
status: waiting-for-triage
An issue we've not yet triaged
#17382
opened Jun 27, 2025 by
blake-bauman
Loading…
Previous Next
ProTip!
no:milestone will show everything without a milestone.