Home
Spring Security HTTP Basic Authentication
February 10, 2013
1 Comment

Spring Security HTTP Basic Authentication

In Spring Security, we will discuss about the Spring security HTTP basic authentication.  When HTTP basic authentication is configured, web browser will display a login dialog for user authentication.

Required Tools used for this Application:

  • Spring MVC 3.0.1
  • Spring Security 3.1.0
  • STS 2.8.1.RELEASE
  • Tomcat 7
  • Jdk 1.7

You can configure HTTP basic authentication in sdnext-security.xml as follows :

<?xml version="1.0" encoding="UTF-8"?>
<beans xmlns="http://www.springframework.org/schema/beans"
       xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
       xmlns:security="http://www.springframework.org/schema/security"
       xmlns:p="http://www.springframework.org/schema/p" 
       xsi:schemaLocation="http://www.springframework.org/schema/beans
                           http://www.springframework.org/schema/beans/spring-beans.xsd
                           http://www.springframework.org/schema/security
                           http://www.springframework.org/schema/security/spring-security-3.1.xsd">

   <security:http auto-config="true" >
  <security:intercept-url pattern="/index*" access="ROLE_USER" />
  <security:http-basic></security:http-basic>
  <security:logout logout-success-url="/logout" />
 </security:http>

    <security:authentication-manager>
   <security:authentication-provider>
     <security:user-service>
   <security:user name="dineshonjava" password="sweety" authorities="ROLE_USER" />
     </security:user-service>
     
   </security:authentication-provider>
 </security:authentication-manager>

</beans>

To enable HTTP basic, just change “form-login” to “http-basic” tag. As follows on the above file

<security:http auto-config="true" >
  <security:intercept-url pattern="/index*" access="ROLE_USER" />
  <security:http-basic></security:http-basic>
  <security:logout logout-success-url="/logout" />
 </security:http>

And all remaining code same as the previous example Spring Security form-based login example ,

After that we will run the example.
Running the example

Export the example as war and deploy it Tomcat 7 server. While browsing the project you will get the following screen for login:

Access URL http://localhost:8080/sdnext/index“, Spring will redirect to your custom login form.
URL : http://localhost:8080/sdnext/index

If username/password is correct, authentication success, display requested page.

 URL : http://localhost:8080/sdnext/index

Download Source Code + Libs
SpringSecurityHttpBasic.zip

References- 
https://www.dineshonjava.com/spring-security-form-based-login-example/
Spring Security
Spring Security documentation

 

                             <<previous<<             || index  ||         >>next>>

 

Previous
Next
Spring Security

Related Posts

About The Author

Dinesh Rajput

Dinesh Rajput is the chief editor of a website Dineshonjava, a technical blog dedicated to the Spring and Java technologies. It has a series of articles related to Java technologies. Dinesh has been a Spring enthusiast since 2008 and is a Pivotal Certified Spring Professional, an author of a book Spring 5 Design Pattern, and a blogger. He has more than 10 years of experience with different aspects of Spring and Java design and development. His core expertise lies in the latest version of Spring Framework, Spring Boot, Spring Security, creating REST APIs, Microservice Architecture, Reactive Pattern, Spring AOP, Design Patterns, Struts, Hibernate, Web Services, Spring Batch, Cassandra, MongoDB, and Web Application Design and Architecture. He is currently working as a technology manager at a leading product and web development company. He worked as a developer and tech lead at the Bennett, Coleman & Co. Ltd and was the first developer in his previous company, Paytm. Dinesh is passionate about the latest Java technologies and loves to write technical blogs related to it. He is a very active member of the Java and Spring community on different forums. When it comes to the Spring Framework and Java, Dinesh tops the list!

One Response

  1. Anonymous February 17, 2014

    thanks