Grab this sources and build it with maven
LDAPTestCase is working with configuration you are asking for:
For GateIn config remember that you need to map ANY User/Group attribute that portal would like to store into LDAP attribute. Configuring GateIn to not store any IDM information in DB would be very tricky and not sure really possible without LDAP schema hacking.
this solution is perfect but now I have the problem that following exception occurs and I do not have the administration toolbar at top of the site if I login:org.picketlink.idm.common.exception.FeatureNotSupportedException: Role management not supported by underlaying configured identity storesat org.picketlink.idm.impl.api.session.IdentitySessionImpl.getRoleManager(IdentitySessionImpl.java:239)
what can I do?
Thanks for your great solution.
The GateIn Picketlink LDAP IdentityStore implementation does not support Roles, it only supports Memberships. If you want the ability to support roles, you will need to implement your only implementation of the LDAP IdentityStore.
Hope thats helpful.