Hi,
I've written a custom authentication handler, which does seem to work. Reads
from STDIN, Authenticates, and returns either OK or ERR on STDOUT back to
squid.
My next step, I want to allow a certain block of addresses http_acess, deny
everyone else, but also allow any request that was successfully authenticated.
I've got the following in squid.conf
# Authentication scripts
auth_param basic program /usr/local/libexec/squid/my_auth
auth_param basic children 25
auth_param basic realm Proxy Authentication
auth_param basic credentialsttl 2 hours
auth_param basic casesensitive off
The above seem to work. When using a browser, I am prompted for my username
and password....
# ACL to setup authenticated users, as well as the src addresses of the static
# addresses to allow through the proxy.
acl local src x.x.x.x/y
acl authenticated proxy_auth REQUIRED
# http_access rules.
http_access allow local
http_access allow authenticated
http_access deny all
Basically, what happens is that squid prompts for my username and password, yet,
after I enter them, squid just sits there. Error log / access log shows nothing,
and the browser eventually times out. This is with squid 2.5-STABLE9
A quick debug, shows that squid is never passing the information to the authentication
script, so I'm not sure what I did wrong... My auth_param should be fine though, right???
-- Chris.Received on Wed May 11 2005 - 02:47:35 MDT
This archive was generated by hypermail pre-2.1.9 : Wed Jun 01 2005 - 12:00:02 MDT