We are using ldap to authenticate and authorize access to applications in our services.
As part of that, we have a roles mechanism.
I would like to authorize only those users who have a certain role to login to glu.
The existing configuration knobs (ldap.ser.url etc) are missing such options, could you please advise as to what would be the best way to integrate ldap roles into glu?
2) submit a pull request integrating this change to ShiroLdapRealm.groovy if you think you can make it generic enough and useful for everybody else (ex: ldap.user.group config parameter) and I will integrate it in the source base.
I don't know a lot about ldap so I am not sure what would be generic :)