There is a newer version available. Please update to Spring Security 5.6!

Username/Password Authentication

One of the most common ways to authenticate a user is by validating a username and password. As such, Spring Security provides comprehensive support for authenticating with a username and password.

Reading the Username & Password

Spring Security provides the following built in mechanisms for reading a username and password from the HttpServletRequest:

Form Login
Basic Authentication
Digest Authentication

Storage Mechanisms

Each of the supported mechanisms for reading a username and password can leverage any of the supported storage mechanisms:

Simple Storage with [servlet-authentication-inmemory]
Relational Databases with [servlet-authentication-jdbc]
Custom data stores with [servlet-authentication-userdetailsservice]
LDAP storage with [servlet-authentication-ldap]