Re: [squid-users] How to program automatic http basic authentication

From: Mazott Supergrep <[email protected]>
Date: Tue, 30 Apr 2002 09:22:52 +0200

Hello Henrik,

thank you for your response. Please allow me to ask a bit more.

Do you think that, properly using the redirector features of squid, is possibile to customize the url rewriting url rules set, in a way that each rule is choosen and looked up based on the ip of the originating client? My purpose is to implement a look up mechanism to set a dedicated user/pass pair specific to an ip address, which for my purpose identifies the user.

 

Thank you, best regards

-- Marco

 

 

>From: Henrik Nordstrom

>To: Mazott Supergrep
>CC: [email protected]
>Subject: Re: [squid-users] How to program automatic http basic authentication
>Date: Sat, 27 Apr 2002 14:34:01 +0200
>
>The redirector interface of Squid can be used to add user credentials on
>forwarded requests by using the Internet URL standard syntax
>
> http://user:password@host/path/to/file
>
>Meaning, if you use a redirector that for the sites in question makes
>rewrites like
>
>From: http://host/path/to/file
>To: http://user:password@host/path/to/file
>
>Then Squid will automatically log in as "user" with the password
>"password", unless other credentials are supplied by the web browser.
>
>Regards
>Henrik
>
>
>
>Mazott Supergrep wrote:
> >
> > Hello,
> > I'm looking for a proxy feature devising a way that, transparently
> > with respect of end user intervention, performs the basic http
> > authetication on behalf of the user. The authentication would be done
> > utilizing credentials automatically choosen upon the IP address of the
> > user client. A fundamental prerequisite of the solution is that the
> > credentials would be the same as the username/password pair of the
> > Windows NT login.
> > The definite purpose is avoiding the user filling his/her own
> > credentials, when requested to do so through the authentication login
> > window presented by the web server.
> >
> > To better motivate my need, please consider that the web application
> > is not conveying sensitive data whatever, so
> > the security functionality involved inside the
> > authentication mechanism itself can be safely disregarded. On the
> > other, hand the restrict access configuration of the web server is
> > still desidered to implement a personalized working environment for
> > the the specific user.
> >
> > So my question: is Squid, or any other proxy implementation/product to
> > your knowledge, that could program such mechanism?
> >
> > Thank you for any hints!
> >
> > -- Marco
> >
> >
> >
> > ----------------------------------------------------------------------
> > Send and receive Hotmail on your mobile device: Click Here


MSN Photos is the easiest way to share and print your photos: Click Here
Received on Tue Apr 30 2002 - 01:23:55 MDT

This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:07:45 MST