We have many users with WLAN access to Squid - so basic authentication cannot be used for security reasons. In basic authentication Squid can be forced to query the helper for the credentials by setting the 'credentialsttl' parameter to a few seconds - so when you remove the user-credentials from the database the user can't access Squid anymore. I wanted the same behaviour with the digest auth scheme and tried auth_param digest nonce_garbage_interval 3 seconds auth_param digest nonce_max_duration 3 seconds But if I remove the user from the database which is queried by the helper - there is no effect. The credentials that the browser is sending are still valid - so the user has further access to the internet. Do anybody have a digest auth scheme that is working this way? Hints would be appreciated. Thanx -- View this message in context: http://squid-web-proxy-cache.1019090.n4.nabble.com/Can-credtentialsttl-in-basic-auth-scheme-be-simulated-in-digest-auth-tp3475078p3475078.html Sent from the Squid - Users mailing list archive at Nabble.com.
