I was wondering as to
how to approach the password synchronization??
The use case
is:
a) There is an
enterprise wide authentication system vide the LDAP.
b) There's a custom web
application that maintains it's own user list and roles (say local
user list). Only if the users exist in the local user list, they will be
validated against the LDAP for password authentication (if this is
active).
c) If for some reason
the LDAP is down, the user should be able to bypass the authentication and login
using the local authentication. For this, I always need to synchronize the
successful password login to the local password (one way encoding..off course).
I was wondering how to
implement this using ACEIG. Do you think that this is outside the security
domain and should be handled separately ? Or can a new method, say
synchronizePassword (in the dao provider for now ) can be added just like
loadUserByUsername.
Thanks
Shishir
