modular Java/J2EE application security framework - Portlet

 Spring Security is a Java/Java EE framework that provides advanced
 authentication, authorization and other comprehensive security features for
 enterprise applications. In addition to having a comprehensive list of
 security functionality, Spring Security is very configurable and employs the
 Spring Framework for configuration, it allows for reuse and portability of
 security components, and it can also be used with non-Spring applications.
 .
 Spring Security currently supports authentication integration with these
 technologies:
  - HTTP BASIC authentication headers.
  - HTTP Digest authentication headers.
  - HTTP X.509 client certificate exchange.
  - LDAP.
  - Form-based authentication
  - Transparent authentication context propagation for Remote Method
    Invocation (RMI) and HttpInvoker (a Spring remoting protocol).
  - Automatic "remember-me" authentication.
  - Anonymous authentication.
  - Run-as authentication.
  - Java Authentication and Authorization Service (JAAS)
  - Container integration with JBoss, Jetty, Resin and Tomcat.
 .
 This package provides spring-security-portlet.jar: Provide authentication
 interceptor (and related classes) for use with the Portlet 1.0 (JSR 168)
 specification.