>Number: 751 >Category: config >Synopsis: Using Apache as Proxy Server >Confidential: no >Severity: critical >Priority: medium >Responsible: apache (Apache HTTP Project) >State: open >Class: support >Submitter-Id: apache >Arrival-Date: Thu Jun 19 02:40:01 1997 >Originator: [EMAIL PROTECTED] >Organization: apache >Release: 1.2.0 >Environment: OSF1 dair.ucg.ie V4.0 464 alpha >Description: I have the following lines in my access.conf file. I wish to force users to suppl enter username/password the first time they attempt top access a site external to our domain. But they are prompted for user/pass every time they access any other external sites as well. Is there a way of authenticating a user once i.e. on their first access of an external site ?
<Directory proxy:*> <Limit GET PUT POST DELETE CONNECT OPTIONS> order allow,deny allow from all require valid-user AuthType Basic AuthName membership AuthUserFile /etc/wwwpasswd #deny from [machines you'd like *not* to allow by IP address or name] #allow from [machines you'd like to allow by IP address or name] </Limit> </Directory> >How-To-Repeat: >Fix: >Audit-Trail: >Unformatted:
