Spring Security: Ignore login page by using a special URL parameter

Question

I currently have a setup that looks something like this:

spring-security.xml:

Answer 1

In Spring Security the scenario you want to cover is described in reference manual, chapter Pre-Authentication Scenarios.

Basically you have to:

• create custom filter by extending AbstractPreAuthenticatedProcessingFilter or choosing one of its implementations,
• register custom filter ,
• implement or choose one of implemented AuthenticationUserDetailsServices,
• register the service in PreAuthenticatedAuthenticationProvider (with ).

EDIT: In this answer OP shows his way of implementig custom PRE_AUTH_FILTER.