spring-security
https://github.com/spring-projects/spring-security
Java
Spring Security
Triage Issues!
When you volunteer to triage issues, you'll receive an email each day with a link to an open issue that needs help in this project. You'll also receive instructions on how to triage issues.
Triage Docs!
Receive a documented method or class from your favorite GitHub repos in your inbox every day. If you're really pro, receive undocumented methods or classes and supercharge your commit history.
Java not yet supported178 Subscribers
View all SubscribersAdd a CodeTriage badge to spring-security
Help out
- Issues
- Updating to mockito 4.11.0 causes OAuth2LoginBeanDefinitionParserTests and OAuth2ClientBeanDefinitionParserTests to fail
- Resource server examples incorrectly use hyphenated `opaque-token` properties namespace
- OAuth2AuthorizedClient doesn't get removed when 403 returned by Resource Server
- Remove AbstractConfiguredSecurityBuilder#apply
- Deprecation of AbstractSecurityInterceptor
- Switching users creates user sessions
- `NimbusJwtDecoder` should remove its setters in favor of its builders
- Customizing AccessDeniedHandler for MissingCsrfTokenException when an InvalidSessionStrategy exists
- Consider Making Attribute Based Authorization Simpler to implement
- Consider enabling decentralized per-module security configuration
- Docs
- Java not yet supported