Implementation Guide for Oracle Billing Insight > Customizing User Management > Customizing User Authentication and Authorization With Spring Security >

About Authentication Request Processing

The preconfigured AuthenticationManager property in the spring-security.xml file processes each authentication request.

If authentication is successful, then Spring Security places the resulting Authentication object into the Security Context Holder and redirects the browser to the defaultTargetUrl property, which you can customize.

If authentication fails, then Spring Security places AuthenticationException into the HttpSession attribute indicated by WebAttributes.AUTHENTICATION_EXCEPTION, and displays an error page with a reason. This attribute contains well-known keys that are used to store Spring Security information in request or session scope. If authentication fails, the browser displays the authentication failure URL, then which you can also customize.