Steve Riesenberg

Hi @membersound. Thanks for the sample over in spring boot issue. I was able to pull in the project and see your errors. I am able to convert the simple...

Hi @membersound. Just to let you know, I've spoken with the team around this issue. A couple of takeaways: * It's not 100% clear yet whether Spring itself supports the...

Thanks @mengelbrecht, that's definitely worth exploring. I'm less familiar with the test infrastructure, so thanks for pointing that out!

@rwinch I have pushed a branch ([draft 1](https://github.com/spring-projects/spring-security/compare/5.8.x...sjohnr:spring-security:gh-4001-draft-1-functional?expand=1)) based on our discussion, and looking for general feedback on the approach. This draft uses functional hooks. The next approach we could...

Replaced by gh-11731

Awesome, thanks @PunchyRascal! I do want to point out for future users encountering this issue that this change (logging invalid client registration ID at WARN level) will still require many...

Thanks for reaching out @tinolazreg, and thanks for the detailed explanation! Reviewing the `NimbusJwtDecoder.JwkSetUriJwtDecoderBuilder` and the Nimbus library class `RemoteJWKSet`, it looks like this could happen as you outlined, though...

Thanks for the tests @tinolazreg! I've opened a PR (#11638) for a possible fix based on my suggested workaround. Would you mind reviewing and verify if it would fix the...

Oh, right. I did that to ensure we're caching the same thing (JSON) and not some kind of object. I'll take a look at that after I come back from...

Thanks for the nudge @tinolazreg! I am just getting back from my trip and this is definitely on the list. I'll let you know as soon as I have an...