Jul 8th, 2009, 05:44 AM
Remember-Me with LDAP authentication and DB Authorization.
in our project we had the scenario : LDAP authentication and DB for authorization. and implementing remember-me too.
outline of my configuration looks as follows:
bindauthenticator - for authentication
UserDetailsServiceLdapAuthoritiesPopulator - for authorization.
as the above class needs a 'userdetailsservice' to delegate with, i have implemented a custom 'userdetailsservice' which simply populates 'userdetails' object with granted authorities from DB given 'username'.
but,then i am unable to provide 'remember-me' functionality as the 'userdetails'
populated from 'userdetailsservice' does not contain 'password'.
upon search ,i thought 'ldapuserdetailsservice' provided by spring
might satisify my requirement .
but , 'ldapuserdetailsservice' requires 'AuthoritiesPopulator'(UserDetailsServiceLdapAutho ritiesPopulator in our case) which inturn requires 'userdetailsservice'.
so, should i implement a custom 'userdetailsservice' so that it retrives 'password' from LDAP and roles from DB when supplied 'username'?(able to supply 'username' from 'TokenBasedRememberMeServices').
or ,is there any other way of doing it?
BTW, why should i supply 'password' again when i say 'remember-me'?
Last edited by sangram; Jul 8th, 2009 at 05:56 AM.
Jul 9th, 2009, 04:11 AM
and what if the ldap servers do not support anonymous searches ?