CustomShiro is a grails project which shows how to use apache shiro with various LDAP/Active Directory authentication mechanisms. It also shows how to keep user logged in for a defined period and how to remove cookies from users machine
Changes made to:
This contains the list of AD providers and specific cookie age overrides.
This contains the actions to take upon user visiting site again or logging out
This contains the authProviders to create pre launching application which also populates AD/LDAP servers on login page
This contains a domainClass which is used to create authentication providers to tally up with authentication providers defined in config.groovy
This contains a custom Token which now includes our own authProviders being passed around - could have used host and used default usernamePasswordToken but this was an excercise on how to extend existing framework
this is our shiro realm configuration for LDAP/AD
This is our LDAPService which works alongside above realm
unsused feature - a way of overriding authenticationToken which is a way of defining a new method of authenticating if it superseeds the requirements of usernamePassword token i.e. authentication with just a username (no password) or email or anything else.