On Mon, 2006-12-11 at 00:11 +0100, Henrik Nordstrom wrote: > > What is missing is the helper... Indeed. I think that is basically what I summarized in my followup e-mail. Pity. > None of the squid developers knows Kerberos APIs or Microsoft SPNEGO > packet format to write such helper, but we would be happy to guide > anyone knowing the Kerberos and SPNEGO side of things how to interface > with Squid. Wouldn't an existing helper, like the ntlm_auth helper in Samba be of use? Does it not take the SPNEGO data from the browser and hand it off to some MS Goop(tm) for an authentication response? That would at least take care of the SPNEGO stuff, no? > It's not a difficult thing at all if you have a SPNEGO > authentication backend. Indeed. Ten+ years ago and I'd be coding this up. Unfortunately so many other constraints on my time limit my hacking time these days. 'Tis a pity that this is the only piece missing. Much appreciate your input on answering this though. b. -- My other computer is your Microsoft Windows server. Brian J. Murrell
Attachment:
signature.asc
Description: This is a digitally signed message part
