My configuration does authentication in Apache and then passes the pre-authenticated request to Tomcat. It looks like the class
com.xpn.xwiki.user.impl.xwiki.AppServerTrustedAuthServiceImpl assumes the authentication has already occurred and creates an Xwiki user which is what I think I want. So, I thought all I had to do was add a line to the xwiki.cfg file like this:
xwiki.authentication.authclass=com.xpn.xwiki.user.impl.xwiki.AppServerTrustedAuthServiceImpl
But it didn't seem to work so I turned on debugging log4j.properties with this:
log4j.logger.com.xpn.xwiki.user.impl.xwiki=debug
And this showed up in my xwiki.log:
17:21:20,996 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Checking match: XWiki.XWikiGuest in
17:21:20,996 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Checking match: XWiki.XWikiGuest in
17:21:20,997 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Failed match: XWiki.XWikiGuest in
17:21:20,997 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Checking object 2
17:21:20,997 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Checking match: view in view,register,
17:21:20,997 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Found a right for true
17:21:20,997 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Checking match: XWiki.XWikiGuest in XWiki.XWikiGuest,
17:21:20,997 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Checking match: XWiki.XWikiGuest in XWiki.XWikiGuest
17:21:20,998 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Found matching right in XWiki.XWikiGuest, for XWiki.XWikiGuest
17:21:20,998 [TP-Processor2] DEBUG xwiki.XWikiRightServiceImpl - Access has been granted for (XWiki.XWikiGuest,Panels.MyRecentModif
It doesn't seem to be using the AppServerTrustedAuthServiceImpl because the expected log statements don't appear in the log file. Any suggestions on how to properly configure AppServerTrustedAuthServiceImpl ??
Any help greatly appreciated - Glenn