Rob Winch
Rob Winch
@thomasdarimont Would love to see a pull request :-D or even a sample thrown together
Given this breaks passivity, we should consider it for 6.0.x or close as invalid.
Spring Security should use the latest version of OpenSAML and bring it in by default, so it would seem that 1 would be the best option. Shibboleth has documented their...
The defaults have been changed, but we will keep this around till Security 7.0.0-M1 to allow for reverting to the previous behavior for now.
Thanks for the report! I see what you need to do, but this is behaving as I would expect. The assertion is verifying if a user is currently authenticated (not...
**UPDATED**: Fixed workaround, demo CSRF support workaround, and provide link to complete example. @making Thanks for the report. We will look into a proper solution. In the meantime, you can...
@rstoyanchev Any ideas on how we can get Spring Security to integrate with the `MockMvcWebTestClient` support? With `WebTestClient` we typically add a `WebFilter` which can access the attribute on `ServerWebExchange`...
@gursahibsahni Sorry the workaround I posted previously, should have removed the `mutateWith` method. I've [updated the example](https://github.com/spring-projects/spring-security/issues/9257#issuecomment-738549886) and provided a link to a repository that demonstrates the workaround in its...
@wolfs Thanks! I was not aware of the fork.
@javabrett I didn't look at the results myself. I was told by the Gradle team after submitting my results. I'll see if they are able to help out here.