I am looking for a secure login / session user interface for a public web application. Spring Security has potential, are there other high quality alternatives?
Conceptually, this is easy, and currently we have code that works great, but I would prefer to use code that has been publicly reviewed for security flaws.
It is required:
- input
- Exit
- Secure session token management (token will not guess)
- Session Duration
- Java / Tomcat Support
source
share