Solution: As Spring Security will automatically configure a filter chain with the name springSecurityFilterChain when you enable web application security, you can simply use this name for your DelegatingFilterProxy instance.

Solution: Inside the http configuration element, you can restrict access to particular URLs with one or more intercept-url elements.

Solution: You can configure authentication services in the authentication-provider element, which is nested inside the authentication-manager element.

Solution: Spring Security also supports defining user details in user-service directly for simple security requirements. You can specify a
username, a password, and a set of authorities for each user.

Solution: Spring Security supports several ways of authenticating users, including authenticating against a database or an LDAP repository.

Solution: Spring Security will automatically register and configure several basic security services, including the above mentioned.

Solution: The HTTP Basic authentication support can be configured via the http-basic element. When HTTP Basic authentication is required, a browser will typically display a login dialog or a specific login page for users to log in.

Solution: The form-based login service will render a web page that contains a login form for users to input their login details and process the login form submission. It’s configured via the form-login element.

Solution: In order for Spring Security to display your custom login page when a login is requested, you have to specify its URL in the login-page attribute.

Solution: If you specify a custom login page, you will have to configure the authentication-failure-url attribute to specify which URL to redirect to on login error.