On 04/30/2010 08:14 PM, Henrik Nordström wrote:
tor 2010-04-29 klockan 15:53 -0430 skrev Robert Marcano:
I am attaching a patch for 3.0.x versions (I will forward port if there
is interest and change recommendations). This patch adds a new option to
Squid that allows it to forward the current authenticated user to the
next proxy (or the HTTP server if that is what is wanted) via an HTTP
header.
How does this differ from the already existing login=*:somesecret
cache_peer option? From your description it sounds like that may
actually be preferred as you then do not need to patch DG to support the
new header.
I think the only difference is that it uses a non standard header, so is
the wheel reinvented, how did I miss that option? my mistake. Still DG
needs to be patched, in order to identify the user from different auth
methods as the same one (remove Domain info from the username on NTLM
and Kerberos), but that is DG related
Regards
Henrik
