I am using spring basic authentication with the following settings in my security xml:

Question

0

Asked: June 2, 20262026-06-02T16:31:07+00:00 2026-06-02T16:31:07+00:00

I am using spring basic authentication with the following settings in my security xml:

0

I am using spring basic authentication with the following settings in my security xml:

<http use-expressions="true" create-session="never" >
        <intercept-url pattern="/**" method="GET" access="isAuthenticated()" />
        <intercept-url pattern="/**" method="POST" access="isAuthenticated()" />
        <intercept-url pattern="/**" method="PUT" access="isAuthenticated()" />
        <intercept-url pattern="/**" method="DELETE" access="isAuthenticated()" />
        <http-basic />
    </http>

If authentication fails, the browser pop ups a prompt window to renter the user name and password.
Is there any way to make that prompt not pop up at all ?

Report

Leave an answer
Cancel reply

You must login to add an answer.

Need An Account,

1 Answer

Editorial Team · Answer 1 · 2026-06-02T16:31:08+00:00

Most probable the page that is used for authentication failure is also protected. You can try manually to set the failure page to one that is not protected like

 <access-denied-handler error-page="/login.jsp"/>

together with

 <intercept-url pattern="/*login*" access="hasRole('ROLE_ANONYMOUS')"/>

or

<intercept-url pattern='/*login*' filters='none'/>

or you can use the auto-config='true' attribute of the http element that will fix that for you.See more here

Sign Up

Sign In

Forgot Password

The Archive Base Latest Questions

I am using spring basic authentication with the following settings in my security xml:

Leave an answerCancel reply

1 Answer

Leave an answer
Cancel reply