Spring Security (https://spring.io/projects/spring-security) is the de facto solution for security in a Spring Framework-based application. It provides an API and utilities to manage all aspects of security, such as authentication and authorization. It supports a wide range of authentication mechanisms, such as OAuth2, JWT, Session (web form), LDAP, SSO (short for single sign-on) servers, JAAS (short for Java Authentication and Authorization Service), and Kerberos. It also has features such as remember me and concurrent sessions.