Re: [squid-users] block domains based on LDAP group and force re-authentication every 30 minutes

From: Wim Ramakers <wim.ramakers_at_lucine-os.be>
Date: Tue, 18 Feb 2014 12:24:27 +0100

Op 18-feb.-2014, om 11:53 heeft Amos Jeffries <squid3_at_treenet.co.nz> het volgende geschreven:

> ...
> The behaviour you are seeing is because the credentials are still valid
> in the authentication database.
>
> NP: browsers do not provide any logout mechanism to users. The above
> wiki page has an example of ACL configuration to force a change of
> credentials.
>
> Amos

Thank you for confirming that my findings are correct.

I�m reading about the squid_session external_acl_type, would setting the deny_info page to an url that is not allowed for anyone (following the force-reauthentication-hack) solve my problem and trigger a popup after the session time? The force method works as expected, so if i could just redirect the user into that direction automatically that would be great!

Wim
Received on Tue Feb 18 2014 - 11:24:36 MST

This archive was generated by hypermail 2.2.0 : Tue Feb 18 2014 - 12:00:06 MST