On Tue, 2008-09-09 at 15:32 +1200, Amos Jeffries wrote: > > Hello > > > > I want to have some access control lists(acl) based on the content of > > the request body. for example I need to block some requests which have > > a special value in a field of a form which is submitted via http POST. > > external_acl_type directive does not have any format string to > > redirect whole request body to an external helper(authenticator). It > > just can redirect request header not request body. > > > > Any idea? > > > > Body processing is far too complex to be done via the ACL available in Squid. > You will need a content adaptation filter seperate from Squid. The best > way to do that currently is with Squid-3 and an ICAP server which > processes things the way you want. ... followed by an eCAP Squid plugin if you deploy in October or November. In both cases, you will need to write a plugin (for the ICAP server or for Squid). HTH, Alex.
