Luca Dell'Oca wrote:
Here is where the problems start.
'REQUIRED' means only that the person MUST login. Squid does not care
what the username/password is, just that it authenticates.
To get specific user having access to a specific site you need to list
the username in the acl. Like so:
acl administrator proxy_auth admin Administrator
acl assistent proxy_auth john
Thanks so much Amos, this configuration did the trick, now every user has
its own list of allowed sites!!!
Only one final question: when one of the user opens up an allowed site,
sometimes parts of it belongs to external websites. Internet explorer pops
up with the request for alternative credentials, and in some cases there are
so many popups making navigation really frustrating.
As an example, I allowed microsoft.com, but the website gets pieces from
msn.com that is denied. How can I avoid it? What I need is simply drop
requests for non allowed sites and do not have the popups.
If the auth ACl is the last entry on the denying http_access line, the
browser is given the change to re-sen credentials.
You can either re-arrange the _access line so auth is not last, or a
small config hack if you need it is to add 'all' at the end.
Amos
--
Please use Squid 2.6.STABLE20 or 3.0.STABLE5
