Luca Dell'Oca wrote:
>> Here is where the problems start.
>> 'REQUIRED' means only that the person MUST login. Squid does not care
>> what the username/password is, just that it authenticates.
>>
>> To get specific user having access to a specific site you need to list
>> the username in the acl. Like so:
>>
>> acl administrator proxy_auth admin Administrator
>> acl assistent proxy_auth john
>
> Thanks so much Amos, this configuration did the trick, now every user has
> its own list of allowed sites!!!
>
> Only one final question: when one of the user opens up an allowed site,
> sometimes parts of it belongs to external websites. Internet explorer pops
> up with the request for alternative credentials, and in some cases there are
> so many popups making navigation really frustrating.
>
> As an example, I allowed microsoft.com, but the website gets pieces from
> msn.com that is denied. How can I avoid it? What I need is simply drop
> requests for non allowed sites and do not have the popups.
If the auth ACl is the last entry on the denying http_access line, the
browser is given the change to re-sen credentials.
You can either re-arrange the _access line so auth is not last, or a
small config hack if you need it is to add 'all' at the end.
Amos
-- Please use Squid 2.6.STABLE20 or 3.0.STABLE5Received on Mon May 19 2008 - 11:06:02 MDT
This archive was generated by hypermail 2.2.0 : Tue Aug 05 2008 - 01:05:13 MDT