may i know can we specify url for http-basic so that only authenticate if go to particular page? example login.jsp ? i do not want to use form login.
The Spring approach:
<security:http> <security:http-basic></security:http-basic> <security:intercept-url method="POST" pattern="/mypage.jsp" access="ROLE_USER" /> </security:http>
As you see, at the intercept-url element you can define the resources under access control. It has an attribute pattern where you can define the url pattern (admiting wildcards) of such resources.