I am trying to implement a Custom Realm without Authentication and only for authorisation against AD. Is this possible?
My use case is, I have a Third party authentication system implemented in a webserver which sits before Kibana. The user should use "only" this authentication system to login. On successful login, the username information needs to be extracted from the header (the header will have no details of Password or Groups) and looked up again the AD for the group details which needs to be mapped against Shield roles. I have a bind user and password for querying the AD.
I am using this example : https://github.com/elastic/shield-custom-realm-example
But I am stuck at extracting the token with no password.
Any pointers how to approach this will be very helpful.