If I make the assumption that proxy_auth is going to happen before processing
the URL request:
http_access allow proxy_auth (list of users) (sites allowed)
http_access deny (list of users)
http_access allow (list of full access users)
http_access deny all
Something more like that jumps to mind, but I can't test it for you until
later so perhaps someone else can advance on this further.
Simon
20-Mar-02 at 07:55, Michael K Bender (benderm@marmail.ed.ray.com) wrote :
> Hello,
>
> I am currently using a proxy_auth ACL to control access through the squid proxy. However, there are certain
> users of mine that I want to only allow access to specific sites. I understand what the ACL would be to do
> that, but I want to make sure that the user is first authenticated, and then limited to certain sites. I'm
> not sure in what order to put these ACLs in order to achieve what I want. I'm thinking that I'd put a
> http_access deny !(sites they are allowed) (list of specific users from ACL), and then the http_access allow
> proxy_auth (list of all users from ACL). I'm looking for someone to either tell me if I'm on the right track,
> or if I'm completely off.
-- John Lennon:--v [Simon White. vim/mutt/Linux. simon@mtds.com. GIMPS: 46.68%] Sometimes we sit and read other people's interpretations of our lyrics and think, 'Hey, that's pretty good.' If we liked it, we would keep our mouths shut and just accept the credit as if it was what we meant all along.Received on Wed Mar 20 2002 - 06:09:35 MST
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 17:07:00 MST