I’m trying to utilize the HybridAuthProvider with the primary provider as a custom implementation of an AuthProvider that makes an http request to another webapp to authenticate for most users, except for two users that I would like to authenticate using the DefaultAuthProvider (local database).
How I’ve gone about this implementation is to set the following properties:
My understanding from the javadoc is that if the overrideList is specified for a given provider, then only those users listed in the overrideList will be authenticated against the given provider.
However, what I am noticing is that for all other users aside from xmpprootowner and admin, is that if CustomAuthProvider fails, it fals back to the DefaultAuthProvider.
Is this the expected behavior and if so, what would the proper configuration be for what I want to achieve?