spring-security
spring-security copied to clipboard
spring-projects
Spring Security
RemoteJWKSet use synchronized for synchronization. But this will suspend the carrier thread. In some specific situations, it may cause the server to hang: `single carrier thread.(Single core CPU). And call...
**Describe the bug** When i custom reactiveUserDetail or custom reactiveAuthenProvider , maximumSessions() not working **code @Bean SecurityWebFilterChain filterChain(ServerHttpSecurity http) { http // ... .sessionManagement((sessions) -> sessions .concurrentSessions((concurrency) -> concurrency .maximumSessions(SessionLimit.of(1))...
Closes gh-14778
**Describe the bug** I'm not sure if this is the intended behavior where `SecurityContextHolder` is not populated or accessible within `@BeforeAll/PostConstruct`. I searched the repository and found https://github.com/spring-projects/spring-security/issues/6591 is quite...
To support reactive one-time token login for a clustered environment, need to implement `R2dbcReactiveOneTimeTokenService` or something like this.
**Expected Behavior** Can use YescriptPasswordEncoder. **Current Behavior** There's no YescriptPasswordEncoder in the selection. **Context** Please read this: https://fedoraproject.org/wiki/Changes/yescrypt_as_default_hashing_method_for_shadow
### Description: This pull request simplifies the MockPortResolver class by: * Removing unnecessary parentheses to enhance code readability. * Adding a static final field for the "https" scheme to improve...
Currently, there is no easy way to flag a `UserDetails` object that has its password compromised. There is no first-class property in Spring Security to identify that. This will entail:...
**Expected Behavior** The documentation should clarify that when using `HttpSecurity#addFilterBefore()`, the specified filter will be executed before the target filter in the filter chain, and if the intention is to...
Closes #15852 By using `UriComponentsBuilder.fromUriString` we stay in a single semantic context and do not loose information.
