spring-security
spring-security copied to clipboard
spring-projects
Spring Security
I'm working to limit the number of sessions per user in Spring Boot, so as to limit the number of devices it can connect. this is my WebSecurityConfigurerAdapter: **http.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.IF_REQUIRED).maximumSessions(10).maxSessionsPreventsLogin(true);** I...
**Affects:** 5.2.5.RELEASE --- We have a Spring Web MVC + jetty application using SSE for notifications. We recently converted our SSE controller from returning a `SseEmitter` to returning a `Flux
Sprint Security 5.7.2. I have simple method with authentication principal and instead of principal get empty object. ```kotlin @GetMapping("/me2") fun me2(@AuthenticationPrincipal user: User): User { return user } interface IUserInfo...
**Expected Behavior** It would be great to have similar capabilities in oauth2Client as in oauth2Login to provide `defaultSuccessUrl`. In case of SPA this could be set to SPA index page....
**Expected Behavior** Have an easy mechanism to use `.with(oauth2Login())` on a service that uses the `ServletOAuth2AuthorizedClientExchangeFilterFunction#setDefaultOAuth2AuthorizedClient(true)` feature. **Current Behavior** When I use `.with(oauth2Login())` on such service, the call isn't processed...
The CAS client (4.0.0-SNAPSHOT) has just been updated to JDK 17 + Jakarta EE. https://github.com/apereo/java-cas-client/commit/496adb1cf6bcc4ec55e7911c5eb5b75b5325bdf6
**Expected Behavior** Ideally I would be able to create a default assertion validator via `createDefaultAssertionValidator()` and be able to pass a set of static parameters for the default `ValidationContext`. **Current...
Closes gh-9401
### Summary I have modified the https://github.com/rwinch/spring-security-sample boot-webflux branch to add CSRF using the `CookieServerCsrfTokenRepository`. ### Actual Behavior If I do a GET to localhost:8080 I do not see a...
### The problem We currently facing a very special problem using Spring Security OAuth in conjunction with Keycloak in a container cluster (OKD) in a high regulated and networking constraint...
