I’m pleased to announce on behalf of the community Spring Security OAuth2 Boot Auto-config 2.0.4 and 2.1.0.M2. Both releases primarily deliver bug fixes and dependency version updates along with some minor improvements. Of particular note is that these align with recent releases of Spring Boot. For a complete list of changes, please refer to the 2.0.4 changelog and 2.1.0.M2 changelog. Project Site | Reference | Help

On behalf of the community I am pleased to announce the release of Spring Security 5.1.0.RC1. This release comes with 50+ tickets closed. As always we look forward to hearing your feedback! You can find the highlights below: Table of Contents Servlet OAuth2 Resource Server Open ID Provider Configuration Claim Validation GrantedAuthority Extraction OAuth2 Client Credentials Grant Feature-Policy Secure Header WebFlux OAuth2 Resource Servers OAuth2 Login/Client Authorization Code Grant Authorization Request Resolver Authorized Client Repository Hardening Your Application Secure Headers CORS…

On behalf of the community, I am pleased to announce that Spring Security 5.0.7 (changelog) has been released. The release primarily delivers bug fixes and dependency version updates along with some minor improvements. The releases will be found in the upcoming Spring Boot maintenance releases coming later this week. Project Site | Reference | Help

2018-05-09 Update: The releases address a vulnerability. Please see this blog post published after the associated Spring Boot 2.0.2 releases. I'm pleased to announce the release of Spring Security 5.0.5. The release primarily delivers bug fixes and dependency version updates along with some minor improvements. For a complete list of changes, please refer to the 5.0.5 changelog. Project Site | Reference | Help