Welcome to Software Development on Codidact!
Will you help us build our independent community of developers helping developers? We're small and trying to grow. We welcome questions about all aspects of software development, from design to code to QA and more. Got questions? Got answers? Got code you'd like someone to review? Please join us.
Post History
A login page is but the tip of the iceberg. For a login page to function, you need a way to store users and their passwords, verify passwords in a safe way, prevent the login form from being bypass...
Answer
#1: Initial revision
A login page is but the tip of the iceberg. For a login page to function, you need a way to store users and their passwords, verify passwords in a safe way, prevent the login form from being bypassed by requiring a login before accessing a protected resource, and thus designate resources as protected. Often, you'll also want role based access control because not all users are created equal. That is, you don't just want a mere login form, but a security framework or library. One such library is [Spring Security](https://spring.io/projects/spring-security). Or you could say that this entire login thing should be handled by a different piece of software altogether. This allows a single login to grant access to many applications at once, so the user doesn't need a new password for each of them. A reasonably modern Single Sign On protocol is OpenID Connect, of which various implementations are provided as a service.