Spring Security is a security framework for a spring project, also springboot underlying security module the default technology selection. He can achieve powerful web security control, safety control, we only need to introduce the spring-boot-starter-security module, a small amount of configuration, you can implement strong security management.
Related categories:
WebSecurityConfigurerAdapter: Custom Security Strategy
AuthenticationManagerBuilder: Custom authentication policy
@EnableWebSecurity: open WebSecurity mode
The two main areas of the application is "authentication" and "authorization" (or Access Control)
Authenticate
His statement is the process of establishing a body of a subject generally refers to the action of a user other systems, a number of devices that can be performed in your application.
Authorize
It refers to the process of determining whether to allow a subject in your application to perform an action. In order to reach the required authorization store, the subject's identity has been established certification process