README.adoc

image::https://badges.gitter.im/Join%20Chat.svg[Gitter,link=https://gitter.im/spring-projects/spring-security?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge]

image:https://github.com/spring-projects/spring-security/actions/workflows/continuous-integration-workflow.yml/badge.svg?branch=main["Build Status", link="https://github.com/spring-projects/spring-security/actions/workflows/continuous-integration-workflow.yml"]

image:https://img.shields.io/badge/Revved%20up%20by-Develocity-06A0CE?logo=Gradle&labelColor=02303A["Revved up by Develocity", link="https://ge.spring.io/scans?search.rootProjectNames=spring-security"]

= Spring Security

Spring Security provides security services for the https://docs.spring.io[Spring IO Platform]. Spring Security 6.0 requires Spring 6.0 as
a minimum and also requires Java 17.

For a detailed list of features and access to the latest release, please visit https://spring.io/projects[Spring projects].

== Code of Conduct
Please see our https://github.com/spring-projects/.github/blob/main/CODE_OF_CONDUCT.md[code of conduct]

== Downloading Artifacts
See https://docs.spring.io/spring-security/reference/getting-spring-security.html[Getting Spring Security] for how to obtain Spring Security.

== Documentation
Be sure to read the https://docs.spring.io/spring-security/reference/[Spring Security Reference].
Extensive JavaDoc for the Spring Security code is also available in the https://docs.spring.io/spring-security/site/docs/current/api/[Spring Security API Documentation].

You may also want to check out https://docs.spring.io/spring-security/reference/whats-new.html[what's new in the latest release].

== Quick Start
See https://docs.spring.io/spring-security/reference/servlet/getting-started.html[Hello Spring Security] to get started with a "Hello, World" application.

== Building from Source
Spring Security uses a https://gradle.org[Gradle]-based build system.
In the instructions below, https://vimeo.com/34436402[`./gradlew`] is invoked from the root of the source tree and serves as
a cross-platform, self-contained bootstrap mechanism for the build.

=== Prerequisites
https://docs.github.com/en/get-started/quickstart/set-up-git[Git] and the https://www.oracle.com/java/technologies/downloads/#java17[JDK17 build].

Be sure that your `JAVA_HOME` environment variable points to the `jdk-17` folder extracted from the JDK download.

=== Check out sources
[indent=0]
----
git clone git@github.com:spring-projects/spring-security.git
----

=== Install all `spring-*.jar` into your local Maven repository.

[indent=0]
----
./gradlew publishToMavenLocal
----

=== Compile and test; build all JARs, distribution zips, and docs

[indent=0]
----
./gradlew build
----

The reference docs are not currently included in the distribution zip.
You can build the reference docs for this branch by running the following command:

----
./gradlew :spring-security-docs:antora
----

That command publishes the docs site to the `_docs/build/site_` directory.
The https://github.com/spring-projects/spring-security/tree/docs-build[playbook branch] describes how to build the reference docs in detail.

Discover more commands with `./gradlew tasks`.

=== IDE setup (IntelliJ)

No special steps are needed to open Spring Security in IntelliJ.

=== IDE setup (Eclipse and VS Code)

To work in Eclipse or VS Code, first generate Eclipse metadata so you can import the project into Eclipse or VS Code:

[indent=0]
----
./gradlew cleanEclipse eclipse
----

If you have not built the project yet, run `./gradlew publishToMavenLocal` first so dependencies are resolved.

*VS Code:* Open the repository root as a folder. The repository includes `.vscode/settings.json` which disables automatic Gradle import so that the generated Eclipse metadata (`.classpath`, `.project`) is used. Do not use the Gradle for Java extension to import the project.

*Eclipse:* File → Import → General → Existing Projects into Workspace, then select the repository root.

The build uses a custom Eclipse plugin to work around Gradle dependency cycles that confuse IDE metadata generation. You may see Eclipse warnings about `xml-apis` from some test dependencies; those are excluded in the build and can be ignored.

== Getting Support
Check out the https://stackoverflow.com/questions/tagged/spring-security[Spring Security tags on Stack Overflow].
https://spring.io/support[Commercial support] is available too.

== Contributing
https://docs.github.com/en/pull-requests/collaborating-with-pull-requests/proposing-changes-to-your-work-with-pull-requests/creating-a-pull-request[Pull requests] are welcome; see the https://github.com/spring-projects/spring-security/blob/main/CONTRIBUTING.adoc[contributor guidelines] for details.

== License
Spring Security is Open Source software released under the
https://www.apache.org/licenses/LICENSE-2.0.html[Apache 2.0 license].
Add Gitter to README 2015-08-11 11:49:46 -05:00			`image::https://badges.gitter.im/Join%20Chat.svg[Gitter,link=https://gitter.im/spring-projects/spring-security?utm_source=badge&utm_medium=badge&utm_campaign=pr-badge&utm_content=badge]`

Update CI workflow badge 2023-12-28 16:33:24 +09:00			`image:https://github.com/spring-projects/spring-security/actions/workflows/continuous-integration-workflow.yml/badge.svg?branch=main["Build Status", link="https://github.com/spring-projects/spring-security/actions/workflows/continuous-integration-workflow.yml"]`
Build GitHub Actions CI pipeline 2020-11-10 07:25:16 -08:00
Update Revved up by Develocity badge 2024-01-18 15:35:22 -06:00			`image:https://img.shields.io/badge/Revved%20up%20by-Develocity-06A0CE?logo=Gradle&labelColor=02303A["Revved up by Develocity", link="https://ge.spring.io/scans?search.rootProjectNames=spring-security"]`
Add Revved up by Gradle Enterprise badge to README 2021-01-05 17:19:40 +01:00
SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00			`= Spring Security`

Upgrade to JDK 17 2021-10-07 14:33:15 -03:00			`Spring Security provides security services for the https://docs.spring.io[Spring IO Platform]. Spring Security 6.0 requires Spring 6.0 as`
			`a minimum and also requires Java 17.`
SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00
URL Cleanup 2019-03-19 23:53:23 -05:00			`For a detailed list of features and access to the latest release, please visit https://spring.io/projects[Spring projects].`
SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00
SEC-3209: Add Code of Conduct 2016-02-01 14:23:59 -06:00			`== Code of Conduct`
master->main 2021-04-26 16:50:35 -05:00			`Please see our https://github.com/spring-projects/.github/blob/main/CODE_OF_CONDUCT.md[code of conduct]`
SEC-3209: Add Code of Conduct 2016-02-01 14:23:59 -06:00
SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00			`== Downloading Artifacts`
Fix incorrect links 2024-05-13 18:05:02 +09:00			`See https://docs.spring.io/spring-security/reference/getting-spring-security.html[Getting Spring Security] for how to obtain Spring Security.`
SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00
			`== Documentation`
Fixing URL on README 2024-07-02 20:21:06 -03:00			`Be sure to read the https://docs.spring.io/spring-security/reference/[Spring Security Reference].`
Fixed broken links 2019-02-12 01:21:07 -05:00			`Extensive JavaDoc for the Spring Security code is also available in the https://docs.spring.io/spring-security/site/docs/current/api/[Spring Security API Documentation].`
SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00
Add What's New Link to Landing Pages 2024-11-18 15:42:43 -07:00			`You may also want to check out https://docs.spring.io/spring-security/reference/whats-new.html[what's new in the latest release].`

SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00			`== Quick Start`
Fix incorrect links 2024-05-13 18:05:02 +09:00			`See https://docs.spring.io/spring-security/reference/servlet/getting-started.html[Hello Spring Security] to get started with a "Hello, World" application.`
SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00
			`== Building from Source`
URL Cleanup 2019-03-19 23:53:23 -05:00			`Spring Security uses a https://gradle.org[Gradle]-based build system.`
			In the instructions below, https://vimeo.com/34436402[`./gradlew`] is invoked from the root of the source tree and serves as
SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00			`a cross-platform, self-contained bootstrap mechanism for the build.`

			`=== Prerequisites`
Polish README.adoc 2022-12-04 16:15:54 +07:00			`https://docs.github.com/en/get-started/quickstart/set-up-git[Git] and the https://www.oracle.com/java/technologies/downloads/#java17[JDK17 build].`
SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00
Upgrade to JDK 17 2021-10-07 14:33:15 -03:00			Be sure that your `JAVA_HOME` environment variable points to the `jdk-17` folder extracted from the JDK download.
SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00
			`=== Check out sources`
			`[indent=0]`
			`----`
			`git clone git@github.com:spring-projects/spring-security.git`
			`----`

Polish README.adoc 2022-12-04 16:15:54 +07:00			=== Install all `spring-*.jar` into your local Maven repository.

SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00			`[indent=0]`
			`----`
Fix README local Maven install command 2021-07-07 12:01:57 +02:00			`./gradlew publishToMavenLocal`
SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00			`----`

Polish README.adoc 2022-12-04 16:15:54 +07:00			`=== Compile and test; build all JARs, distribution zips, and docs`

SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00			`[indent=0]`
			`----`
			`./gradlew build`
			`----`

add information to README describing how to build the reference docs 2022-09-16 16:52:47 -06:00			`The reference docs are not currently included in the distribution zip.`
			`You can build the reference docs for this branch by running the following command:`

			`----`
			`./gradlew :spring-security-docs:antora`
			`----`

Polish README.adoc 2022-12-04 16:15:54 +07:00			That command publishes the docs site to the `_docs/build/site_` directory.
add information to README describing how to build the reference docs 2022-09-16 16:52:47 -06:00			`The https://github.com/spring-projects/spring-security/tree/docs-build[playbook branch] describes how to build the reference docs in detail.`

SEC-2871: Polish README.adoc 2015-02-24 16:57:04 -06:00			Discover more commands with `./gradlew tasks`.
SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00
Add IDE Setup Documentation 2026-03-03 18:51:17 -07:00			`=== IDE setup (IntelliJ)`

			`No special steps are needed to open Spring Security in IntelliJ.`

			`=== IDE setup (Eclipse and VS Code)`

			`To work in Eclipse or VS Code, first generate Eclipse metadata so you can import the project into Eclipse or VS Code:`

			`[indent=0]`
			`----`
			`./gradlew cleanEclipse eclipse`
			`----`

			If you have not built the project yet, run `./gradlew publishToMavenLocal` first so dependencies are resolved.

			VS Code: Open the repository root as a folder. The repository includes `.vscode/settings.json` which disables automatic Gradle import so that the generated Eclipse metadata (`.classpath`, `.project`) is used. Do not use the Gradle for Java extension to import the project.

			`Eclipse: File → Import → General → Existing Projects into Workspace, then select the repository root.`

			The build uses a custom Eclipse plugin to work around Gradle dependency cycles that confuse IDE metadata generation. You may see Eclipse warnings about `xml-apis` from some test dependencies; those are excluded in the build and can be ignored.

SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00			`== Getting Support`
URL Cleanup 2019-03-19 23:53:23 -05:00			`Check out the https://stackoverflow.com/questions/tagged/spring-security[Spring Security tags on Stack Overflow].`
Fixed Broken Support Link 2023-02-21 10:49:21 -07:00			`https://spring.io/support[Commercial support] is available too.`
SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00
			`== Contributing`
Polish README.adoc 2022-12-04 16:15:54 +07:00			`https://docs.github.com/en/pull-requests/collaborating-with-pull-requests/proposing-changes-to-your-work-with-pull-requests/creating-a-pull-request[Pull requests] are welcome; see the https://github.com/spring-projects/spring-security/blob/main/CONTRIBUTING.adoc[contributor guidelines] for details.`
SEC-2871: readme.txt->README.adoc 2015-02-24 16:56:31 -06:00
			`== License`
SEC-2871: Polish README.adoc 2015-02-25 09:46:33 -06:00			`Spring Security is Open Source software released under the`
URL Cleanup 2019-03-14 15:30:00 -05:00			`https://www.apache.org/licenses/LICENSE-2.0.html[Apache 2.0 license].`