I'm currtenly working on the backend logic of a java project.

我目前正在研究 Java 项目的后端逻辑。

Frontend (GWT) will follow soon and business logic might be deployed in a J2EE container (maybe Spring) to handle some life-cycle issues. However, I'm not sure if I will go for a container.

前端 (GWT) 将很快跟进，业务逻辑可能会部署在 J2EE 容器（可能是 Spring）中以处理一些生命周期问题。但是，我不确定我是否会选择一个容器。

I thought about putting some thinking into user/role management and authentification before I proceed. However, I'm having a hard time to find the right way, identifiy right libraries and best practices.

在继续之前，我考虑过对用户/角色管理和身份验证进行一些思考。但是，我很难找到正确的方法，确定正确的库和最佳实践。

The issue is that this will be more or less an enteprise app that might use existing user directories to authenticate (e.g. LDAP) or might be used also on the web for "public" access where users can sign up.

问题在于，这或多或少是一个企业应用程序，它可能使用现有用户目录进行身份验证（例如 LDAP），或者也可能在网络上用于用户可以注册的“公共”访问。

I'm also looking for a lightweight solution which is min. invasive (I guess Spring would be helpful here?!).

我也在寻找一个最小的轻量级解决方案。侵入性的（我猜 Spring 在这里会有所帮助？！）。

I'm thankfull for any input and experiences

我很感激任何意见和经验