per our chat...perhaps add a more generic mapping function that defines a property of your own choosing instead of the hardcoded 'admin.authorizedJID'
There may be a use-case where you have want admins and users mixed in different providers. for example LDAP and DefaultAuthProvider. Since ldap is read only, the mapper could be used create/edit local user accounts within the writable provider.
This would allow an admin to provide xmpp accounts that don't require ldap-network access adhering the principle of least privilege