[TriLUG] Java and AD Authentication
bdmc at bdmcc-us.com
Mon Nov 28 10:16:32 EST 2011
I am going to ask here because I know that there are some deep resources here, including pointers to other groups or web links.
I am working with some Java code that I have inherited, using Spring Security version 2, and have been asked to add the ability to authenticate against an Active Directory server in the same environment ( network ).
The idea is to use the existing environment to provide information about the person already logged in, and ask the AD server for further roles and permissions.
All of the research that I have been doing points at using the AD server as an LDAP server ( as far the the Spring Security module is concerned ), with or without the "internal" login prompt that it would provide.
However, in a very brief conversation, someone suggested that there was a SOAP way to do this that would just "automagically KNOW" who was logged in, and carry on the conversation with the AD server in the background.
None of my searches seem to be turning up anything that looks appropriate, maybe I am just not reading things correctly.
Does anybody know of this integration technique linking Java with, I guess, a web service provided by the AD server, that would just "know" what it needs to know about the current user? I guess that the Java application is running on the client browser, talking to Tomcat on the web server, and also to the AD server.
More information about the TriLUG