@Override

    protected void configure(HttpSecurity http) throws Exception {

        String loginPage = "/login";

        http

            .exceptionHandling()

            .authenticationEntryPoint(new AjaxAuthenticationEntryPoint(loginPage))

            .and()

            .addFilterBefore(new LocaleFilter(localeResolver), UsernamePasswordAuthenticationFilter.class)

    ...

}

import java.io.IOException;

import javax.servlet.ServletException;

import javax.servlet.http.HttpServletRequest;

import javax.servlet.http.HttpServletResponse;

import org.springframework.security.core.AuthenticationException;

import org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint;

import com.zhqn.sc.utils.CommonsUtils;

public class AjaxAuthenticationEntryPoint extends LoginUrlAuthenticationEntryPoint{

    public AjaxAuthenticationEntryPoint(String loginFormUrl) {

        super(loginFormUrl);

    }

    @Override

    public void commence(HttpServletRequest request, HttpServletResponse response,

            AuthenticationException authException) throws IOException, ServletException {

        if (CommonsUtils.isAjax(request)) {

            String redirectUrl = buildRedirectUrlToLoginPage(request, response, authException);

            response.setHeader("redirectUrl", redirectUrl);

            response.sendError(HttpServletResponse.SC_FORBIDDEN);

        }else {

            super.commence(request, response, authException);

        }

    }

}

　　$(document).ajaxError(function(event,xhr,options,exc){

        if(xhr.status == 403 && xhr.getResponseHeader("redirectUrl")) {

            window.top.location.href = xhr.getResponseHeader("redirectUrl");

        }

    });