[squid-dev] Drop cache_object protocol support
Eduard Bagdasaryan
eduard.bagdasaryan at measurement-factory.com
Wed Jan 25 13:58:14 UTC 2023
On 25.01.2023 15:29, Amos Jeffries wrote:
> On 25/01/2023 5:34 pm, Alex Rousskov wrote:
>> On 1/24/23 20:57, Amos Jeffries wrote:
>>
>>> Blocker #1: The cachemgr_passwd directly still needs to be cleanly
>>> removed, eg replaced by a manager_access ACL based mechanism.
>>
>> I do not see a relationship: I have not tested it, but the existing
>> CacheManager::ParseHeaders() code already extracts authentication
>> information from cache manager requests that use "http" scheme
>> AFAICT. Can you detail why the cachemgr_passwd directive/code cannot
>> continue to work essentially as it works today after cache_object
>> scheme support is removed from Squid?
>
> We should check that then. It may not be as impactful as I am recalling.
My test showed that CacheManager::ParseHeaders() extracts password from
the Authorization header incorrectly: params.password gets an extra '\n'
symbol and CacheManager::CheckPassword() fails. This, however, seems
easy to fix.
Eduard.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-dev/attachments/20230125/11f4c9ea/attachment.htm>
More information about the squid-dev
mailing list