}

    /**
     * Returns the action role for this admin action.
     *
     * @return the role name
     */
    @Override
    protected String getActionRole() {
        return ROLE;
    }

    // ===================================================================================

     */
    @Execute
    @Secured({ ROLE, ROLE + VIEW })
    public HtmlResponse index() {
        return asListHtml();
    }

    /**
     * Show the list page.
     * @param pageNumber The page number.
     * @param form The search form.
     * @return The HTML response.
     */
    @Execute
    @Secured({ ROLE, ROLE + VIEW })

     */
    @Execute
    @Secured({ ROLE, ROLE + VIEW })
    public HtmlResponse index() {
        saveToken();
        return asHtml(path_AdminDesign_AdminDesignJsp).useForm(DesignForm.class);
    }

    /**
     * Go back to the index page.
     * @return The HTML response.
     */
    @Execute
    @Secured({ ROLE, ROLE + VIEW })
    public HtmlResponse back() {
        saveToken();

# Whether to use samAccountName for LDAP group.
ldap.samaccountname.group=false

# Whether LDAP role search for user is enabled.
ldap.role.search.user.enabled=true
# Whether LDAP role search for group is enabled.
ldap.role.search.group.enabled=true
# Whether LDAP role search for role is enabled.
ldap.role.search.role.enabled=true

# LDAP attribute for surname.
ldap.attr.surname=sn
# LDAP attribute for given name.

                for (final String role : roles) {
                    if (StringUtil.isNotEmpty(role)) {
                        roleSet.add(role);
                    }
                }
            }
        } else {
            final String[] roles = rolesStr.split(roleSeparator);
            for (final String role : roles) {
                if (StringUtil.isNotEmpty(role)) {
                    roleSet.add(role);

            logger.warn("Failed to access groups/roles in Entra ID.", e);
        }
    }

    /**
     * Adds a group or role name to the specified list.
     * @param list The list to add the group or role name to.
     * @param value The group or role name value.
     * @param useDomainServices Whether to use domain services for group resolution.
     */

     */
    protected void addRoleAttributes(final BasicAttributes entry, final Role user) {
        // nothing
    }

    /**
     * Deletes a role from the LDAP directory.
     *
     * @param role the role object to delete
     */
    public void delete(final Role role) {
        if (!fessConfig.isLdapAdminEnabled()) {
            return;
        }

    /**
     * Checks if the current user has the specified action role or administrative privileges.
     *
     * @param role the role to check (supports both view and edit variants)
     * @return true if the user has the role or admin privileges, false otherwise
     */
    public static boolean hasActionRole(final String role) {
        final String[] roles;
        if (role.endsWith(FessAdminAction.VIEW)) {

    }

    @Override
    protected String getActionRole() {
        return ROLE;
    }

    /**
     * Displays the storage management index page.
     *
     * @return HTML response for the storage list page
     */
    @Execute
    @Secured({ ROLE, ROLE + VIEW })
    public HtmlResponse index() {
        saveToken();
        return asListHtml(StringUtil.EMPTY);
    }

    /**
     * Default constructor for AdminMaintenanceAction.
     */
    public AdminMaintenanceAction() {
        super();
    }

    /**
     * Role identifier for admin maintenance operations.
     */
    public static final String ROLE = "admin-maintenance";

    // ===================================================================================