Re: [squid-users] Squid Reverse Proxy w/ SSL and IIS Server - Auth problems

From: Henrik Nordstrom <henrik_at_henriknordstrom.net>
Date: Tue, 01 Jul 2008 20:17:46 +0200

On tis, 2008-07-01 at 12:22 +0200, Garry wrote:

> A server is running 2.6.(20), multiple SSL certs take care of incoming
> connections on different ports for multiple servers. Servers are then
> referenced through a local redirect which replaces the original names
> sent to Squid with the internal HTTP addresses and ports. So far,
> everything works fine.

It's best if you can avoid rewriting the URLs...

> Anyway, the problem begins with the authentication. While the auth works
> fine for anything like IE, Firefox, Opera and the likes on regular PCs,
> authentication itself works when someone connects using a mobile client
> (Windows Mobile), but as soon as not a get but a post is issued
> accessing any forms on the IIS app, the user auth isn't sent anymore, so
> all I get is the 401 ...

No idea. The client shouldn't behave differently wrt authentication on
get or post requests..

Which authentication scheme is used? Basic, or NTLM?

If NTLM then a guess is that the client maybe only works if the
connection is already open...

> I think I've read something on the net sometime somewhere, where a
> patch/change in the source would be required to correctly hand through
> auth requests from that crappy IIS ... but after many google searches, I
> just can't seem to find anything sufficient ...

All included in 2.6.

Regards
Henrik

Received on Tue Jul 01 2008 - 18:17:51 MDT

This archive was generated by hypermail 2.2.0 : Wed Jul 02 2008 - 12:00:01 MDT