I currently have an LDAP user federation provider and a custom UserStorageProvider spi I wrote to look into my sqlserver DB for user groups. To fully login I need to pass back the user groups to the application, so, they are part of the claims in the KeycloakSecurityContext token string.
Right now either my custom spi validates or the LDAP provider validates depending on the priority number I specify. Is there a way to force keycloak to validate first using the LDAP provider and then also execute the custom provider?
