Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

Multiple Authentication Providers in Spring Security

Tags:

spring-security

I have configured two authentication providers in my Spring Security config:

   <security:authentication-manager>       <security:authentication-provider ref="XProvider" />       <security:authentication-provider ref="YProvider" />    </security:authentication-manager>

Does spring security evaluate both providers? Or does it stop to evaluate if one of them fails? If not, How to make it stop?

Thanks.

like image 588
ankurvsoni Avatar asked Feb 15 '12 23:02

ankurvsoni

People also ask

Can we have multiple WebSecurityConfigurerAdapter?

When using Java configuration, the way to define multiple security realms is to have multiple @Configuration classes that extend the WebSecurityConfigurerAdapter base class – each with its own security configuration. These classes can be static and placed inside the main config.

What is authentication provider in Spring Security?

The Authentication Provider Spring Security provides a variety of options for performing authentication. These options follow a simple contract; an Authentication request is processed by an AuthenticationProvider, and a fully authenticated object with full credentials is returned.

1 Answers

You can specify as many providers as you want. They will be checked in the same order you declared them inside the authentication-manager tag.

Once a successful authentication is made, it will stop polling the providers. If any provider throws an AccountStatusException it will also break the polling.

like image 183
José Lecaros Avatar answered Sep 18 '22 07:09

José Lecaros
Sign in to Comment

Related questions

Spring MVC - Checking if User is already logged in via Spring Security?
An Authentication object was not found in the SecurityContext - Spring 3.2.2
How to make spring boot never issue session cookie?
What is the difference between @EnableWebSecurity and @EnableWebMvcSecurity?
Spring Boot 2.0 disable default security
How to write a custom filter in spring security?
Spring Security exclude url patterns in security annotation configurartion
Spring security CORS Filter
How to use OAuth2RestTemplate?
Adding additional details to principal object stored in spring security context
Spring Security and @Async (Authenticated Users mixed up)
Spring Security hasRole() not working
HTTPS login with Spring Security redirects to HTTP
Spring Security Configuration - HttpSecurity vs WebSecurity
Setting session timeout period with Spring Security 3.0
What is the use of @EnableWebSecurity in Spring?
Spring Security Custom Authentication and Password Encoding
Unable to locate Spring NamespaceHandler for XML schema namespace [http://www.springframework.org/schema/security]
@EnableGlobalMethodSecurity vs @EnableWebSecurity
Multiple antMatchers in Spring security

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!