Spring Security logo

Spring Security

A powerful and highly customizable authentication and access-control framework
383
370
+ 1
4

What is Spring Security?

It is a framework that focuses on providing both authentication and authorization to Java applications. The real power of Spring Security is found in how easily it can be extended to meet custom requirements.
Spring Security is a tool in the Security category of a tech stack.
Spring Security is an open source tool with 6.1K GitHub stars and 4.7K GitHub forks. Here’s a link to Spring Security's open source repository on GitHub

Who uses Spring Security?

Companies
42 companies reportedly use Spring Security in their tech stacks, including deleokorea, Craftbase, and Migros Turkiye Online.

Developers
324 developers on StackShare have stated that they use Spring Security.

Spring Security Integrations

Spring Boot, Spring MVC, OpenID Connect, ZK, and FF4J are some of the popular tools that integrate with Spring Security. Here's a list of all 5 tools that integrate with Spring Security.
Pros of Spring Security
2
Easy to use
2
Java integration
Decisions about Spring Security

Here are some stack decisions, common use cases and reviews by companies and developers who chose Spring Security in their tech stack.

Остап Комплікевич

I need some advice to choose an engine for generation web pages from the Spring Boot app. Which technology is the best solution today? 1) JSP + JSTL 2) Apache FreeMarker 3) Thymeleaf Or you can suggest even other perspective tools. I am using Spring Boot, Spring Web, Spring Data, Spring Security, PostgreSQL, Apache Tomcat in my project. I have already tried to generate pages using jsp, jstl, and it went well. However, I had huge problems via carrying already created static pages, to jsp format, because of syntax. Thanks.

See more

Spring Security's Features

  • Comprehensive
  • Servlet API integration
  • Protection against attacks

Spring Security Alternatives & Comparisons

What are some alternatives to Spring Security?
Django
Django is a high-level Python Web framework that encourages rapid development and clean, pragmatic design.
OAuth2
It is an authorization framework that enables a third-party application to obtain limited access to an HTTP service, either on behalf of a resource owner by orchestrating an approval interaction between the resource owner and the HTTP service, or by allowing the third-party application to obtain access on its own behalf.
Keycloak
It is an Open Source Identity and Access Management For Modern Applications and Services. It adds authentication to applications and secure services with minimum fuss. No need to deal with storing users or authenticating users. It's all available out of the box.
OpenSSL
It is a robust, commercial-grade, and full-featured toolkit for the Transport Layer Security (TLS) and Secure Sockets Layer (SSL) protocols. It is also a general-purpose cryptography library.
Let's Encrypt
It is a free, automated, and open certificate authority brought to you by the non-profit Internet Security Research Group (ISRG).
See all alternatives

Spring Security's Followers
370 developers follow Spring Security to keep up with related blogs and decisions.