Hi, Seems to me that you needs to maintain a map somewhere that tells your realms
that principal1, DN1, uid1 , dbid1 are the same person. On authentication, doGetAuthenticationInfo method of your Realm returns AuthenticationInfo which not 1 principal but a PrincipalCollection. You could populate the PrincipalCollection with all the Principals. Manoj On Mon, Oct 24, 2011 at 8:24 AM, Mike K <[email protected]> wrote: > Les, I am actually looking at implementing something similar. How does one > make sure that principals are translated between two realms? > Internally controlled realms can be more permissive and use UUID (or DBID) > as the principal id. > LDAP uses a DN (there could be several LDAP directories). Any thoughts on > keeping this all from becoming a mess? > > -- > View this message in context: > http://shiro-user.582556.n2.nabble.com/Multiple-Realms-tp4434653p6925397.html > Sent from the Shiro User mailing list archive at Nabble.com. > -- http://khangaonkar.blogspot.com/
