- Included Client Audience: security-admin-console

#### Adding 'admin' Role

- Go to Roles
  - Add new Role `admin` with Description `${role_admin}`.
  - Add this Role into compositive role named `default-roles-{realm}` - `{realm}` should be replaced with whatever realm you created from `prerequisites` section. This role is automatically trusted in the 'Service Accounts' tab.

import org.dbflute.exception.IllegalBehaviorStateException;
import org.dbflute.util.DfTypeUtil;

/**
 * @author FreeGen
 */
public class UserBhv extends BsUserBhv {

    private static final String ROLES = "roles";
    private static final String GROUPS = "groups";
    private static final String PASSWORD = "password";
    private static final String NAME = "name";

    private String indexName = null;

    @Override

            "type" : "keyword"
          },
          "preferredLanguage" : {
            "type" : "keyword"
          },
          "registeredAddress" : {
            "type" : "keyword"
          },
          "roles" : {
            "type" : "keyword"
          },
          "roomNumber" : {
            "type" : "keyword"
          },
          "state" : {
            "type" : "keyword"
          },

    private static final long serialVersionUID = 1L;

    /** The action class that requires specific user roles */
    private final Class<?> actionClass;

    /**
     * Constructs a new UserRoleLoginException with the specified action class.
     *
     * @param actionClass the action class that requires specific user roles
     */
    public UserRoleLoginException(final Class<RootAction> actionClass) {

    public static final String ELEVATE_WORD_FIELDS = "fields";
    /** Key for elevate word tags. */
    public static final String ELEVATE_WORD_TAGS = "tags";
    /** Key for elevate word roles. */
    public static final String ELEVATE_WORD_ROLES = "roles";

    /** Array settings for elevate words. */
    protected ArraySettings arraySettings;

    /**
     * Constructor.
     * @param settings Suggest settings

    public String confirmPassword;

    /**
     * The attributes map for the user.
     */
    public Map<String, String> attributes = new HashMap<>();

    /**
     * The roles assigned to the user.
     */
    public String[] roles;

    /**
     * The groups assigned to the user.
     */
    public String[] groups;

    /**
     * Initializes the form with default values for creating a new user.
     */

    }

    /**
     * Processes sub-roles for the specified LDAP user.
     *
     * @param ldapUser the LDAP user to process sub-roles for
     * @param bindDn the bind DN for LDAP connection
     * @param subRoleSet the set of sub-roles to process
     * @param groupFilter the group filter pattern
     * @param roleSet the set of roles to update
     */

import jakarta.validation.constraints.Size;

/**
 * Form class for editing user roles in the admin interface.
 * This form extends CreateForm to include fields necessary for updating existing role entries,
 * including tracking information for optimistic locking and audit trails.
 * Roles define permissions and access levels for users within the system.
 *
 */
public class EditForm extends CreateForm {

                final LdapManager ldapManager = ComponentUtil.getLdapManager();
                permissions = distinct(ArrayUtils.addAll(ldapManager.getRoles(this, baseDn, accountFilter, groupFilter, roles -> {
                    permissions = distinct(roles);
                    ComponentUtil.getActivityHelper().permissionChanged(OptionalThing.of(new FessUserBean(this)));

        readings[1] = new String[] { "enjin", "fuga" };
        String[] tags = new String[] { "tag1", "tag2" };
        String[] roles = new String[] { SuggestConstants.DEFAULT_ROLE, "role1", "role2", "role3" };
        queryItems[0] = new SuggestItem(new String[] { "検索", "エンジン" }, readings, new String[] { "content" }, 1, 0, -1, tags, roles, null,
                SuggestItem.Kind.DOCUMENT);

        String[][] readings2 = new String[2][];