Peter Polkinghorne wrote:
> Squid has proxy authentication - so it is possible to authenticate
> people at Squid. Squid does some header rewriting - both via
> redirector and the anonymiser.
The redirector already have this feature. If you redirect to
http://username:password@host/... then Squid automatically transforms
this into Basic authentication credentials when contacting the origin
server unless the request from the client also has authentication
credentials.
Only problem as I see it is that the redirector currently does not get
the authenticated user name, only the result of eventual ident lookups.
The patch is trivial (see squid-users archives a few days back).
--
Henrik Nordstrom
Spare time Squid hacker
