Im trying to implement spring-securtiy-saml integration as a SP with an adfs system, and im bumping my head for some days now with this exception happening when SAMLResponnse is sent back from the ...

When I run my Spring Boot application I get this error when using this below code: Bean named mvcHandlerMappingIntrospector of type org.springframework.web.servlet.handler.HandlerMappingIntrospect...

So I have a simple SecurityFilterChain configuration and a simple AuthenticationEntrypoint implementation. The AutheticationEntrypoint implementation just writes a JSON response and the send a 403 ...

I created a New Security Expression in my spring project but it not working. Here is my code. Firstly, i make a CustomPermissionEvaluator which implement PermissionEvaluator: public class CustomPer...

I am building a REST API using Spring and am currently authenticating all my requests using a custom user details service and this configuration code: @Override protected void configure(HttpSecuri...

I'm working with Spring security and jwt ,but there is something that i don't understand in the configuration file (same configuration in all tutorials on JWT ) it is why to add the Custom jwt filt...

Hi, I've been searching the web with very little success and I'm hoping someone here at SO might be able to help. Currently I have my Spring Boot API's (Version 2.5.4) accepting a JWT which is prov...

I run a sample Spring Security (hello world) web application in Apache Tomcat 8. What I'm trying to see is the user information in Tomcat Access Logs, but it looks that this information is no...

I have a Spring Security version 3.2.3 application that listens to both HTTP and HTTPS. I want any request to the HTTP port to be redirected to HTTPS. How do I configure that using Java only? Spri...

I've just added Spring Security to my project. I've also added this configuration: @Configuration @EnableWebSecurity public class WebSecurityConfig extends WebSecurityConfigurerAdapter { @Overri...

I have a WebClient configured as below. In main runtime, webClient is used in a kafka listener started thread. So out of http servlet context. And it is failing as I noticed we should use Authorize...

I'm currently working on a Spring MVC application and I need to add a custom field to my Spring Security log-in user right when I log in (I insert username, password, custom value). This value need...

I'm working on a java Spring Boot project that manages users and sessions internally. It relies on OIDC, AWS Cognito being the Identity Provider, for sign-in and, I would hope, sign-out of the user...

I just added Jwt to my application. When I'm trying to send get request via postman which require authorization, then I've got following error: io.jsonwebtoken.UnsupportedJwtException: Signed Cla...

I am new to spring boot space. I am following a tutorial learning to create OAuth authentication server. While configuring the AuthorizationServerConfig.java the instructor imports 'ProviderSetting...

I'm struggling with the basics of Spring Security here. What I wish to achieve My system is only for REST API handling, there's a login endpoint POST on /user/sign_in and a few open endpoints - G...

I have a class for spring security, validating token from the user. I got the code from Auth0 website and modified antMatcher part for my configuration. Here is the code: @EnableWebSecurity public ...

What should I do to be able to use #oauth2 security expressions on method level like on the example below? @RequestMapping(value = "email", method = RequestMethod.GET) @ResponseBody @PreAuthoriz...

I am getting StackOverflowError while calling authenticationManger.authenticate() java.lang.StackOverflowError: null at org.apache.commons.logging.LogAdapter$Slf4jLog.isDebugEnabled(LogAdapter....

When launching with mvn spring-boot:run or even with gradle returns that issue. *************************** APPLICATION FAILED TO START *************************** Description: Field userDetails...

I'm using spring security with REST, and I'm using the URL (/logout) as an endpoint for my logout method. But after calling this method, it redirect me to (/login?logout), I know this is the spring...

About Spring Security to let, control and get access to the h2 web console I read these two posts: Spring Boot /h2-console throws 403 with Spring Security 1.5.2 H2 console and Spring Security - pe...

I have the following example method in my Repository (with @RepositoryRestResource annotation): @Override @PreAuthorize("permitAll") @PostAuthorize("permitAll") public Iterable<User> findAll...

I'm developing an single-page with Javascript+AngularJS on the client side and Spring MVC + Spring Security OAuth2 on the server side. Spring MVC acts as a REST controller for any AJAX requests fro...

I try created Basic Auth in my java app. For they i used this dependencies in gradle file dependencies { compile group: 'org.springframework.boot', name: 'spring-boot-starter', version: '1.5.9.REL...