public void setupIdentity(Request request) throws AccessControlException {
Session session = request.getSession(true);
if (!hasValidIdentity(session)) {
Identity identity = new Identity();
identity.enableLogging(getLogger());
identity.initialize();
String remoteAddress = request.getRemoteAddr();
String clientAddress = request.getHeader("x-forwarded-for");
if (clientAddress != null) {
Pattern p = Pattern.compile(REGEX);