Hot Topic

Open Session in View (OSIV) in Spring - Aktivieren oder Deaktivieren?

30. August 2023

Letzte Beiträge

Spring 15. Mai 2021

Which Password Encoder Should I Choose With Spring Security?

Did you work on the task to integrate Spring Security in a project? If yes you probably stumbled upon the decision which PasswordEncoder to use. I saw many developers actively researching that question and deciding on a concrete algorithm. In one project we even choose a less secure decoder - for performance reasons. Don’t. Just don’t! Don’t choose a weak encoder for performance. Actually, don’t choose at all! Let Spring handle your security.

Marcus Held

Spring 9. Mai 2019

Custom Authentication Filter with Spring Security

After answering a question on stackoverflow about how to configure Spring Security with your own authentication mechanism I’d like to go into more details in this post. I’ll implement a simple use case where the actual authentication is done by reading the username and password from the header of a request. The example method we implement in this post is NOT a secure way of implementing authentication. I just choose it for the sake of simplicity to demonstrate how to register your own authentication in Spring Security.

Marcus Held