Spring Security: transferring passwords

Im developing a web application with java and Spring Security 3.0.5 and I am pretty new to it. I 开发者_Go百科have a community where users can register and log in. Now I wonder how informations (like password) can be securely transferred to the server so that other people cant read it out. I guess it would work of course with HTTPS, but are there any other solutions/possibilities? (Maybe some offered by Spring Security?)

I'd say SSL/HTTPS is the best choice.

You just need to enable it on your server. You can map your SSL port in your namespace config like this.

This might help you if you're using Tomcat.