Remember-Me with LDAP authentication and DB Authorization.

[sangram]

hi ,

in our project we had the scenario : LDAP authentication and DB for authorization. and implementing remember-me too.

outline of my configuration looks as follows:

bindauthenticator - for authentication

UserDetailsServiceLdapAuthoritiesPopulator - for authorization.

as the above class needs a 'userdetailsservice' to delegate with, i have implemented a custom 'userdetailsservice' which simply populates 'userdetails' object with granted authorities from DB given 'username'.

but,then i am unable to provide 'remember-me' functionality as the 'userdetails'
populated from 'userdetailsservice' does not contain 'password'.

upon search ,i thought 'ldapuserdetailsservice' provided by spring
might satisify my requirement .

but , 'ldapuserdetailsservice' requires 'AuthoritiesPopulator'(UserDetailsServiceLdapAutho ritiesPopulator in our case) which inturn requires 'userdetailsservice'.

so, should i implement a custom 'userdetailsservice' so that it retrives 'password' from LDAP and roles from DB when supplied 'username'?(able to supply 'username' from 'TokenBasedRememberMeServices').

or ,is there any other way of doing it?

BTW, why should i supply 'password' again when i say 'remember-me'?

any help?

regards,
sangram

[sangram]

and what if the ldap servers do not support anonymous searches ?