Details
-
Feature Request
-
Resolution: Done
-
Major
-
None
-
None
-
None
Description
In picketbox there is RoleMappingLoginModule [1], which takes role as returned from authorization process and maps to different role. I thought something similar should be configurable with some of Elytron role-mappers. But looking into model/code, it is not obvious to me which of them can be used. I know custom role mapper can be still used, but I wonder if we really do not provide this common funcionality out of the box with Elytron.
Another workaround is to use direct roles from realm (e.g. LDAP ) in target (e.g. web.xml). But seems users tend to map IDM Roles to applicaiton roles.
Attachments
Issue Links
- clones
-
WFCORE-3666 Provide Elytron alternative to RoleMappingLoginModule
- Resolved