Spring Security is a powerful and highly customizable authentication and access-control framework. It is the de-facto standard for securing Spring-based applications.

Spring Security is a framework that focuses on providing both authentication and authorization to Java applications. Like all Spring projects, the real power of Spring Security is found in how easily it can be extended to meet custom requirements

https://spring.io/projects/spring-security

OAuth 2.0 Migration Guide

https://github.com/spring-projects/spring-security/wiki/OAuth-2.0-Migration-Guide https://spring.io/projects/spring-security-oauth

Spring SAML Extension

https://spring.io/projects/spring-security-saml https://docs.spring.io/spring-security/site/docs/5.2.1.RELEASE/reference/htmlsingle/#saml2

Spring SAML Extension allows seamless inclusion of SAML 2.0 Service Provider capabilities in Spring applications. All products supporting SAML 2.0 in Identity Provider mode (e.g. ADFS 2.0, Shibboleth, OpenAM/OpenSSO, Ping Federate, Okta) can be used to connect with Spring SAML Extension.

This library is being superseded by the SAML feature set in Spring Security Core