Home/ Questions/Q 8062201
In Process

The Archive Base Latest Questions

Editorial Team
  • 0
Asked: 2026-06-05T10:35:18+00:00

Does SpringSecurity have some built-in ability to ignore the letter-case of username? For example,

  • 0

Does SpringSecurity have some built-in ability to ignore the letter-case of username? For example, if the username is “student001”, then it will accept “Student001” as well as “stUdent001”.

The reason I need this is that our system use emails as usernames. Of course I would be able to do this by extending the DAOAuthenticationProvider class, but I just wonder if there’s any built-in option exists for this problem?

Share

Leave an answer

You must login to add an answer.

Need An Account,

1 Answer

  1. Editorial Team

    If you’re using the DaoAuthenticationProvider then I presume you’re using the JdbcDaoImpl with it, which loads users from a JDBC database.

    If so, you can override the SQL query that JdbcDaoImpl uses to look up users by manually creating the bean yourself. The default query that Spring Security uses is:

    select username,password,enabled from users where username = ?

    You can use the SQL lower function to ignore case:

    select username,password,enabled from users where lower(username) = lower(?)

    The appropriate Spring Security XML configuration is:

    <bean id="org.springframework.security.authenticationManager" class="org.springframework.security.authentication.ProviderManager">
    <property name="providers">
        <list>
            <ref bean="daoAuthenticationProvider"/>
        </list>
    </property>
</bean>

<bean id="daoAuthenticationProvider" class="org.springframework.security.authentication.dao.DaoAuthenticationProvider">
    <property name="userDetailsService" ref="caseInsensitiveUserDetailsService"/>
</bean>

<bean id="caseInsensitiveUserDetailsService" class="org.springframework.security.core.userdetails.jdbc.JdbcDaoImpl">
    <property name="usersByUsernameQuery" value="select username, password, enabled from users where lower(username) = lower(?)" />
</bean>
    • 0