Skip to content

saml2Login should not override OpenSaml4AuthenticationProvider bean #13654

New issue
New issue
Closed
Closed
saml2Login should not override OpenSaml4AuthenticationProvider bean#13654
Assignees
jzheaux
Labels
in: configAn issue in spring-security-configtype: bugA general bug
Milestone
6.0.6
@jzheaux

Description

@jzheaux
jzheaux
opened on Aug 16, 2023

Because the saml2Login DSL calls HttpSecurity#authenticationProvider to register its AuthenticationProvider, this overrides when an application declares OpenSaml4AuthenticationProvider as a bean.

It's expected that unless an application calls HttpSecurity#authenticationProvider, then the bean declaration should take precedence.

Metadata

Metadata

Assignees

Labels

in: configAn issue in spring-security-configtype: bugA general bug

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions