The most common way of authenticating a user in web applications is through a login form. As described in Form-Based Authentication, Java EE security defines .