Implementing a Custom Annotation for Anonymous Access in Spring Security

This article explains how to create a custom @IgnoreAuth annotation and integrate it with Spring Security to automatically whitelist controller methods, comparing the two standard ways of permitting requests—configure(WebSecurity) for static resources and configure(HttpSecurity) for filter‑chain‑aware endpoints—while providing full source code examples.

Custom AnnotationJavaWebSecurityConfigurerAdapter

0 likes · 8 min read

Implementing a Custom Annotation for Anonymous Access in Spring Security

macrozheng

Mar 9, 2022 · Information Security

What Replaces WebSecurityConfigurerAdapter in Spring Security 5.7? New Config Guide

Spring Security's WebSecurityConfigurerAdapter is deprecated in version 5.7, and this article explains the migration path by comparing the old and new ways to configure HttpSecurity, WebSecurity, and AuthenticationManager with practical code examples.

JavaSecurity ConfigurationSpring Boot

0 likes · 5 min read

What Replaces WebSecurityConfigurerAdapter in Spring Security 5.7? New Config Guide

Programmer DD

Oct 6, 2017 · Information Security

How Spring Security’s Core Configurations Protect Your Application

This article breaks down Spring Security’s three core Java configuration components—@EnableWebSecurity, WebSecurityConfiguration, and AuthenticationConfiguration—explaining how they replace XML setup, register the security filter chain, build the AuthenticationManager, and enable fine‑grained HttpSecurity rules such as path protection, form login, logout, CSRF, and security headers.

AuthenticationManagerHttpSecurityIn-Memory Authentication

0 likes · 8 min read

How Spring Security’s Core Configurations Protect Your Application