Official website: HTTPS: //projects.spring.io/spring-security/
Spring Security is a powerful, customizable and easy to implement authentication and authorization based on the Spring development
framework.
Spring Security functions:
1) Authentication: Authentication is a user logs on.
2) Authorization: Authorization to determine what the user has permissions, can access what resources.
3) security against cross-site request, session attacks, etc.
4) very readily be used in conjunction SpringMVC
2. Spring Security with the difference Shiro of
2.1. Similarities
1) Authentication
2) authorization function
3) encryption
4) Session Manager
5) caching support
6) rememberMe function
........
2.2. Differs
advantages :
1) Spring Security Spring-based development projects, such as using Spring as a basis, with Spring
Security permission to do more convenient. And Shiro needs and Spring integration development.
2) Spring Security more feature-rich than some Shiro, for example security aspects
3) Spring Security community resources are relatively more abundant than Shiro
disadvantages:
1) Shiro configuration and use relatively simple, Spring Security to use more complicated.
2) Shiro low dependence, and the frame does not require any container that can run independently. Spring Security according to
Lai Spring container.