<html><head><meta http-equiv="Content-Type" content="text/html charset=us-ascii"></head><body style="word-wrap: break-word; -webkit-nbsp-mode: space; -webkit-line-break: after-white-space; "><div>You will need to write an Identity Store implementation. The following code is an example of using one for LDAP (Active Directory).</div><div><br></div><div><a href="https://gist.github.com/gratiartis/4545962">https://gist.github.com/gratiartis/4545962</a></div><div><br></div><div>I wrote that for 5.3. I *think* that means it should be okay for 5.2, but I don't really know.</div><div><br></div><div>I don't think that there is support for passing the user roles into Guvnor - the fine-grained roles (read only, admin, etc) in Guvnor need to be defined within Guvnor against user names which match those in your LDAP. i.e. Your LDAP checks will just be identifying whether the username and password are correct and that they have a role with permission to access Guvnor.</div><div><br></div><div>Steve</div><div><br></div><br><div><div>On 4 Oct 2013, at 05:49, san_hegde <<a href="mailto:santhosh.hegde@hp.com">santhosh.hegde@hp.com</a>> wrote:</div><br class="Apple-interchange-newline"><blockquote type="cite">My requirement is to use the company LDAP for security and for authorization<br>to use the database table where we maintain the User Roles. Also we are<br>using weblogic application server and Guvnor 5.2.<br><br><br><br>--<br>View this message in context: <a href="http://drools.46999.n3.nabble.com/Guvnor-authorization-tp4026252.html">http://drools.46999.n3.nabble.com/Guvnor-authorization-tp4026252.html</a><br>Sent from the Drools: User forum mailing list archive at <a href="http://Nabble.com">Nabble.com</a>.<br>_______________________________________________<br>rules-users mailing list<br><a href="mailto:rules-users@lists.jboss.org">rules-users@lists.jboss.org</a><br>https://lists.jboss.org/mailman/listinfo/rules-users<br></blockquote></div><br></body></html>