In this video, we clearly explain what is Authentication and how User Authentication works in Spring Security 6 using Form Based Authentication and Session Based Authentication with real, practical examples.
We begin by calling multiple REST APIs in a Spring Boot application where everything works normally. Then, after adding the spring-boot-starter-security dependency, Spring Security automatically intercepts requests and shows a User Login page. This is how Form Based Authentication works by default in Spring Security in Spring Boot, without writing a single line of configuration.
As the video progresses, we inspect the browser network requests and understand how JSESSIONID works. You’ll clearly see the JSESSIONID cookie in the request headers and how cookies in Java are used to maintain authentication state. This helps explain session authentication, how a session in Spring Boot is created, and how the client and server communicate using a unique session identifier.
🔐 Session & Cookie Based Authentication Explained
✔️ How session based authentication works internally
✔️ How a session is created on the server
✔️ How cookies carry the JSESSIONID back to the server
✔️ How authentication is maintained across requests
✔️ Understanding Spring Boot session timeout and session lifecycle
🧩 Spring Security Architecture & Authentication Flow
This video also provides a deep dive into Spring Security authentication architecture and internal flow:
✔️ Spring Security filter chain and SecurityFilterChain Spring Boot
✔️ Role of UserNamePasswordAuthenticationFilter in form login
✔️ AuthenticationManager in Spring Security
✔️ AuthenticationProvider Spring Security explained
✔️ How ProviderManager delegates authentication
✔️ Different types of authentication providers explained:
1. DaoAuthenticationProvider
2. OneTimeTokenAuthenticationProvider
3. RememberMeAuthenticationProvider
⚙️ Custom Login & User Details
✔️ How to create Spring Security custom login
✔️ How to define a custom username and password
✔️ Understanding Spring Security UserDetails
✔️ How credentials are validated using DaoAuthenticationProvider
🎓 Who This Spring Security Course Is For
This video is ideal if you are:
1. Learning Spring Security in Spring Boot from scratch
2. Preparing for Spring Security interview questions
3. Trying to understand different types of authentication
4. Wanting real clarity on Spring Security configuration and internals
By the end of this video, you’ll have a clear mental model of Spring Security authentication, from user login to session creation, cookie exchange, and request validation using the security filter chain.
Instagram :
/ the.curious_coder
#interview #springboot #java