On 29/04/11 19:28, Rafal Zawierta wrote:
Or maybe (it will simplify all) - is it some method to get %LOGIN from
headers sent by browser (as it was said before - I use
squid_kerb_auth). In such case I don't need to pass anything special
with deny_info.
Yes that is the better way to do all this. You wont be passing username
un-encrypted.
Just generate the error page using a background auth check in the page
script to lookup the username from the Proxy-Authentication header received.
You could even use squid_kerb_auth to do the sub-check, all it does for
Squid is take a copy of the header line and pass back the username on
success and error message fail.
Hmm...
So for example user is redirected via deny_info to
http://mydenyserver.com/index.php
And my page in php will exec squid_kerb_auth to receive username? You
mean something like this?
Yes, exactly that.
Amos
--
Please be using
Current Stable Squid 2.7.STABLE9 or 3.1.12
Beta testers wanted for 3.2.0.7 and 3.1.12.1
