[xwiki-devs] Need help with AppServerTrustedAuthServiceImpl

My configuration does authentication in Apache and then passes the pre-authenticated request to Tomcat. It looks like the class com.xpn.xwiki.user.impl.xwiki.AppServerTrustedAuthServiceImpl assumes the authentication has already occurred and creates an Xwiki user which is what I think I want. So, I thought all I had to do was add a line to the xwiki.cfg file like this: xwiki.authentication.authclass=com.xpn.xwiki.user.impl.xwiki.AppServerTr ustedAuthServiceImpl But it didn't seem to work so I turned on debugging log4j.properties with this: log4j.logger.com.xpn.xwiki.user.impl.xwiki=debug And this showed up in my xwiki.log: 17:21:20,996 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Checking match: XWiki.XWikiGuest in 17:21:20,996 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Checking match: XWiki.XWikiGuest in 17:21:20,997 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Failed match: XWiki.XWikiGuest in 17:21:20,997 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Checking object 2 17:21:20,997 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Checking match: view in view,register, 17:21:20,997 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Found a right for true 17:21:20,997 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Checking match: XWiki.XWikiGuest in XWiki.XWikiGuest, 17:21:20,997 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Checking match: XWiki.XWikiGuest in XWiki.XWikiGuest 17:21:20,998 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Found matching right in XWiki.XWikiGuest, for XWiki.XWikiGuest 17:21:20,998 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Access has been granted for (XWiki.XWikiGuest,Panels.MyRecentModif It doesn't seem to be using the AppServerTrustedAuthServiceImpl because the expected log statements don't appear in the log file. Any suggestions on how to properly configure AppServerTrustedAuthServiceImpl ?? Any help greatly appreciated - Glenn The contents of this e-mail are intended for the named addressee only. It contains information that may be confidential. Unless you are the named addressee or an authorized designee, you may not copy or use it, or disclose it to anyone else. If you received it in error please notify us immediately and then destroy it.