> ## Documentation Index
> Fetch the complete documentation index at: https://docs.activeviam.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Atoti Security: Authentication

Authentication validates the credentials of a user.
Authentication relies on the [Spring Security](https://spring.io/projects/spring-security) framework,
a mature and widely used security framework that relies on dependency injection and that is of course
fully configurable and deployable via Spring.
All sorts of authentication entry points, protocols, encoding are available by default in Spring Security.
HTTP Basic authentication, X509 authentication, LDAP server authentication, NTLM authentication, single-sign-on,
openID are supported by default, and it is also possible to write custom authentication providers
that interact with existing applications.

<Frame>
  <img src="https://mintcdn.com/activeviam/KszPZqdDnmT6EpJc/engine/java-sdk/6.1/assets/security/authentication.png?fit=max&auto=format&n=KszPZqdDnmT6EpJc&q=85&s=cb6e96f1e473f1bd52ea6f0d425c3d8c" alt="Authentication_flow" width="699" height="335" data-path="engine/java-sdk/6.1/assets/security/authentication.png" />
</Frame>

For example, the sandbox defines some security configuration in the `CorsConfig` class.