Skip to content

Pull requests: spring-projects/spring-security

New pull request New
82 Open 5,189 Closed
82 Open 5,189 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Add AllRequiredFactorsAuthorizationManager.anyOf status: waiting-for-triage An issue we've not yet triaged
#18997 opened Mar 27, 2026 by evgeniycheban Loading…
1
Add unless support to AdditionalRequiredFactorsBuilder status: waiting-for-triage An issue we've not yet triaged
#18939 opened Mar 19, 2026 by therepanic Loading…
1
1
Fix WebAuthn to publish authentication events gh-18113 status: waiting-for-triage An issue we've not yet triaged
#18938 opened Mar 19, 2026 by suuuuuuminnnnnn Loading…
1
Document risks of retaining credentials status: waiting-for-triage An issue we've not yet triaged
#18936 opened Mar 19, 2026 by soowanx Loading…
1
Fix #18863: Add extensible ClientSettings to ClientRegistration in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#18933 opened Mar 18, 2026 by pranavmanglik Loading…
3 of 4 tasks
Consider using RetryTemplate for resolving provider configuration in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#18898 opened Mar 15, 2026 by evgeniycheban Loading…
1
@jgrandja
Add a configurable ServerAuthenticationSuccessHandler to OAuth2Resour… in: config An issue in spring-security-config in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) status: waiting-for-feedback We need additional information before we can continue type: enhancement A general enhancement
#18895 opened Mar 14, 2026 by iain-henderson Loading… 7.1.0-RC1
@jzheaux
3
Consider adding PrincipalResolver to ExchangeFilterFunctions in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: enhancement A general enhancement
#18888 opened Mar 13, 2026 by evgeniycheban Loading…
1
@jgrandja
Add Reporting-Endpoints header support to ContentSecurityPolicyConfig status: waiting-for-triage An issue we've not yet triaged
#18833 opened Mar 2, 2026 by therepanic Loading…
1
2
Enable Enter key submission for One-Time Token login in: web An issue in web modules (web, webmvc) status: waiting-for-feedback We need additional information before we can continue type: enhancement A general enhancement
#18824 opened Feb 28, 2026 by AnanthaKrishnanJ2001 Loading…
1
@jzheaux
1
Add optional nested Active Directory group resolution status: waiting-for-triage An issue we've not yet triaged
#18823 opened Feb 28, 2026 by wonderfulrosemari Loading…
1
Make restOperations configurable in OidcBackChannelLogoutHandler status: waiting-for-triage An issue we've not yet triaged
#18821 opened Feb 28, 2026 by duoduobingbing Loading…
1
Add WebTestClient request builders for form login/logout status: waiting-for-triage An issue we've not yet triaged
#18815 opened Feb 27, 2026 by wonderfulrosemari Loading…
1
Add authenticationSuccessHandler for OAuth2 auth code callback status: waiting-for-triage An issue we've not yet triaged
#18814 opened Feb 27, 2026 by wonderfulrosemari Loading…
1
Add PrincipalIdentifierStrategy to SessionRegistryImpl for custom principal matching status: waiting-for-triage An issue we've not yet triaged
#18794 opened Feb 24, 2026 by 98001yash Loading…
1
Add application-scoped access tokens for reactive OAuth2 client status: waiting-for-triage An issue we've not yet triaged
#18774 opened Feb 22, 2026 by jyx-07 Loading…
1
4
Warn when securityMatcher misses oauth2Login URLs status: waiting-for-triage An issue we've not yet triaged
#18759 opened Feb 18, 2026 by wonderfulrosemari Loading…
1
Fix session concurrency for OAuth2/OIDC authentication in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: bug A general bug
#18624 opened Jan 30, 2026 by Gautam-aman Loading…
3
Bump io.mockk:mockk from 1.14.7 to 1.14.9 type: dependency-upgrade A dependency upgrade
#18598 opened Jan 27, 2026 by dependabot bot Loading…
Lazily instantiate default components in WebAuthnConfigurer status: waiting-for-triage An issue we've not yet triaged
#18586 opened Jan 25, 2026 by ryujungkyun Loading…
Clarify behavior when multiple CorsConfigurationSource beans are present status: waiting-for-triage An issue we've not yet triaged
#18584 opened Jan 25, 2026 by mjkang4416 Loading…
1
Gh 18561 fix jackson date override status: waiting-for-triage An issue we've not yet triaged
#18582 opened Jan 25, 2026 by Khyojae Loading…
1
fix: replace hard-coded JWKS timeouts status: waiting-for-triage An issue we've not yet triaged
#18563 opened Jan 23, 2026 by knoobie Loading…
1
Deprecate BCrypt.gensalt() without SecureRandom parameter in: web An issue in web modules (web, webmvc) type: enhancement A general enhancement
#18560 opened Jan 22, 2026 by yxinot Loading…
1
@jzheaux
3
Add reactive handle method to ServerCsrfTokenRequestHandler in: web An issue in web modules (web, webmvc) status: feedback-provided Feedback has been provided type: enhancement A general enhancement
#18558 opened Jan 22, 2026 by therepanic Loading…
1
4
ProTip! Find all pull requests that aren't related to any open issues with -linked:issue.