Hi All,
I have been reading and trying to find the best solution to my problem.
I need to change some Active Directory attributes (user password, groups and other attributes (I can't tell exactly which ones now)) through a web application I am developing (the application is like an IDM: Identity Management system) and I would like to know which is the best solution.
I thought about the following: create like a LDap "datasource" in JBoss (Application Server managed), use it to connect to LDap, load and change LDap attributes through it.
I have been reading and I could find only the possibilities below:
1. ExternalContext:
Create an ExternalContext to connect to LDap while the JBoss server is starting and access (load and change) Active Directories' LDap attributes. I found some examples but they were only applied to older versions of JBoss, and I could not find an example that fits JBoss 7.1 (standalone.xml) needs.
These links are about older versions:
https://docs.jboss.org/jbossas/docs/Server_Configuration_Guide/4/html/Additional_Naming_MBeans-org.jboss.naming.ExternalContext_MBean.html
https://community.jboss.org/thread/175856
2. JAAS:
With this option, I do not even know if it is possible to load and change LDap attributes. If it is, can you show me an example?
I found some links but they are only authenticating users, not loading and changing LDap attributes: http://middlewaremagic.com/jboss/?p=378
http://stackoverflow.com/questions/16483236/jboss-connection-configuration-for-ldap
3. JBoss GateIn
If it is possible to access GateIn's LDap features programmatically, I think it would be possible to do what I want, but I could not find an example.
I found some links, but I don't think they suit my needs: http://docs.jboss.com/jbportal/v2.6.4/referenceGuide/html/authentication.html#portal_login_modules
Please, if I said something stupid, don't mind, I am just trying to find a solution to my problem.
Thanks for your attention and if I was not that clear with my question, please, let me know.
Regards!