Re: [squid-users] Accelerator with authentication user changed?

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Thu, 21 Jun 2001 09:02:40 +0200

Henk-Jan Kloosterman wrote:
>
> I have been thinking about this subject the past days a lot,
> and would ask your opinion on a (theoratical) solution:
>
> Could it be possible to allow a users access to a https (SSL "accelarator"),
> after authentication ( with proxy_auth)

proxy_auth is HTTP authentication, and there can only be one server
performing HTTP authentication of the user in the request path.

What you can do (but not yet possible in Squid) is to first authenticate
on SSL by using SSL certificates, and then authenticate in HTTP using
username+password.

Or you can authenticate using username+password to the accelerator, and
then let the accelerator authenticate to the real server using
a) The same username+password
b) The same username, but a static (secret) password for all users
c) A static (secret) username+password

--
Henrik Nordstrom
Squid hacker
Received on Thu Jun 21 2001 - 01:13:40 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:00:48 MST