Several of the questions that I've reviewed on this subject seem to assume that the reader understands what it is I'm going to ask here. For example, these two:
Resource Based Access Control vs Role Based Access Control
How do concepts of User (UserAccount) and Realm relate in Apache Shiro?
My question is more basic: How does one connect a Shiro Realm to a back end permission construct like Active Directory? In other words if I have code like this:
if (user.isPermitted("projectReport:view:12345")) {
//show the project report button
} else {
//don't show the button
}
How is the interface to the AD established and controlled? Likewise, if the back-end permission repository is LDAP.
Pointers to appropriate documentation (which I've looked for unsuccessfully) much appreciated. Thanks
