I am using jboss4. I set it up so it check password with my LDAP. Now I want it to get the user role in a database but only the role(not checking the password once again because password are only stored in the LDAP).
from the
jboss documentation:
It's often the case that a local LDAP server provides identity and authentication services but is unable to use the authorization services. This is because application roles don't always map well onto LDAP groups, and LDAP administrators are often hesitant to allow external application-specific data in central LDAP servers. For this reason, the LDAP authentication module is often paired with another login module, such as the database login module, that can provide roles more suitable to the application being developed.
but chapter 8.4.6.4 says about the databaseLoginModule:
You would use this login module if you have your username, password and role information relational database
My question:
How can I use the databaseLoginModule just to retrieve role or what module should I use to do so? I don't have the password in the database.
If not possible where and how should I assign a role to the user?
thanks in advance for help, link or anything usefull.
PS: I already posted to the jboss forum with no response. Appologies if someone had to read twice about my problem.