Skip to content

Pull requests: spring-projects/spring-security

New pull request New
94 Open 5,034 Closed
94 Open 5,034 Closed
Author
Filter by author
Loading
Label
Filter by label
Loading
Use alt + click/return to exclude labels
or + click/return for logical OR
Projects
Filter by project
Loading
Milestones
Filter by milestone
Loading
Reviews
Filter by reviews
No reviews Review required Approved review Changes requested
Assignee
Filter by who’s assigned
Assigned to nobody Loading
Sort
Sort by
Newest Oldest Most commented Least commented Recently updated Least recently updated Best match
Most reactions
👍 👎 😄 🎉 😕 ❤️ 🚀 👀

Pull requests list

Bump org-apache-maven-resolver from 1.9.26 to 1.9.27 type: dependency-upgrade A dependency upgrade
#18792 opened Feb 24, 2026 by dependabot bot Loading…
Bump org-apache-maven-resolver from 1.9.26 to 1.9.27 type: dependency-upgrade A dependency upgrade
#18791 opened Feb 24, 2026 by dependabot bot Loading…
Refine upgradeEncoding condition in DaoAuthenticationProvider status: waiting-for-triage An issue we've not yet triaged
#18788 opened Feb 23, 2026 by therepanic Loading…
1
1
Allow empty passwords in NoOpPasswordEncoder status: waiting-for-triage An issue we've not yet triaged
#18787 opened Feb 23, 2026 by ronodhirSoumik Loading…
1
Add application-scoped access tokens for reactive OAuth2 client status: waiting-for-triage An issue we've not yet triaged
#18774 opened Feb 22, 2026 by Jeongjunyun777 Loading…
1
Specify charset in WWW-Authenticate for Basic Auth status: waiting-for-triage An issue we've not yet triaged
#18760 opened Feb 18, 2026 by therepanic Loading…
1
4
Warn when securityMatcher misses oauth2Login URLs status: waiting-for-triage An issue we've not yet triaged
#18759 opened Feb 18, 2026 by wonderfulrosemari Loading…
1
Provide RestClientSpringOpaqueTokenIntrospector status: waiting-for-triage An issue we've not yet triaged
#18746 opened Feb 16, 2026 by therepanic Loading…
1
1
Remove compiler warnings for spring-security-access in: access An issue in spring-security-access in: build An issue in the build status: waiting-for-feedback We need additional information before we can continue
#18738 opened Feb 15, 2026 by dasog94 Loading…
1
Update request-matcher schema and XML tests to use path status: waiting-for-triage An issue we've not yet triaged
#18737 opened Feb 13, 2026 by meliezer Loading…
1
Fix deserializer for AuthenticationExtensionsClientOutputs status: waiting-for-triage An issue we've not yet triaged
#18644 opened Feb 5, 2026 by ziqin Loading…
1
Update Remember-Me example status: waiting-for-triage An issue we've not yet triaged
#18642 opened Feb 4, 2026 by ngocnhan-tran1996 Loading…
Change ActiveDirectoryLdapAuthenticationProvider to use LdapClient in: ldap An issue in spring-security-ldap type: enhancement A general enhancement
#18627 opened Feb 1, 2026 by therepanic Loading…
1
@jzheaux
5
Fix session concurrency for OAuth2/OIDC authentication in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: bug A general bug
#18624 opened Jan 30, 2026 by Gautam-aman Loading…
3
docs: Update inner link about CSRF in FAQ status: waiting-for-triage An issue we've not yet triaged
#18616 opened Jan 29, 2026 by ghusta Loading…
Bump io.mockk:mockk from 1.14.7 to 1.14.9 type: dependency-upgrade A dependency upgrade
#18598 opened Jan 27, 2026 by dependabot bot Loading…
Fix compile warnings for spring-security-config in: build An issue in the build in: config An issue in spring-security-config status: waiting-for-feedback We need additional information before we can continue type: enhancement A general enhancement
#18596 opened Jan 26, 2026 by 023-dev Loading… 7.1.0-M3
1
@rwinch
9
Lazily instantiate default components in WebAuthnConfigurer status: waiting-for-triage An issue we've not yet triaged
#18586 opened Jan 25, 2026 by ryujungkyun Loading…
Clarify behavior when multiple CorsConfigurationSource beans are present status: waiting-for-triage An issue we've not yet triaged
#18584 opened Jan 25, 2026 by mjkang4416 Loading…
1
Gh 18561 fix jackson date override status: waiting-for-triage An issue we've not yet triaged
#18582 opened Jan 25, 2026 by Khyojae Loading…
1
Clarify need for method attribute in JSP authorize tag type: enhancement A general enhancement
#18566 opened Jan 24, 2026 by Hann244 Loading… 7.1.0-M3
1
@jzheaux
fix: replace hard-coded JWKS timeouts status: waiting-for-triage An issue we've not yet triaged
#18563 opened Jan 23, 2026 by knoobie Loading…
Deprecate BCrypt.gensalt() without SecureRandom parameter status: waiting-for-triage An issue we've not yet triaged
#18560 opened Jan 22, 2026 by lreowy Loading…
1
Add reactive handle method to ServerCsrfTokenRequestHandler in: web An issue in web modules (web, webmvc) status: feedback-provided Feedback has been provided type: enhancement A general enhancement
#18558 opened Jan 22, 2026 by therepanic Loading…
1
4
Docs: Clarify Resource Server startup expectations status: waiting-for-triage An issue we've not yet triaged
#18518 opened Jan 18, 2026 by Hann244 Loading…
1
ProTip! Exclude everything labeled bug with -label:bug.