[squid-users] Digest LDAP authentication

[Olivier Desport]

I've deleted the quotes in the realm declaration but I still have to use 
quotes with the command line :

echo '<login>:<REALM>' | /usr/lib/squid3/digest_ldap_auth -b ou=<basedn> -u uid -A l -W /etc/digestreader_cred -e -v 3  <ldap-host>
BH message="Invalid line received"


echo '"<login>":"<REALM>"' | /usr/lib/squid3/digest_ldap_auth -b 
ou=<basedn> -u uid -A l -W /etc/digestreader_cred -e -v 3 <ldap-host>
OK ha1="......."

And I still don't know what to do with the browser popup.

Le 10/01/2016 05:08, Amos Jeffries a écrit :
> On 9/01/2016 3:50 a.m., Olivier Desport wrote:
>> Hello,
>>
>> I'm trying to implement digest LDAP authentication with digest_ldap_auth
>> on Squid 3.4.
>>
>> When I try to connect with command line, It succeeds :
>>
>> echo '"<login>":"<REALM>"' | /usr/lib/squid3/digest_ldap_auth -b
>> ou=<basedn> -u uid -A l -W /etc/digestreader_cred -e -v 3  <ldap-host>
>> OK ha1="......."
>>
>> In squid.conf
>>
>> auth_param digest program /usr/lib/squid3/digest_ldap_auth -b
>> 'ou=<basedn>' -u uid -A l -W /etc/digestreader_cred -e -v 3 -h <ldap-host>
>> auth_param digest children 5
>> auth_param digest realm "<REALM>"
>> auth_param digest casesensitive off
>>
>> When I test with a browser, the authentication popup with username and
>> password appears. But I don't know what credentials to give. I've tried
>> with "<login>":"<REALM>" for username and the clear password but It
>> doesn't work. The popup appears again and nothing is written in access.log.
>>
>> Could you help me ?
>>
> Perhapse it is that Squid has been told your realm string contains
> quotation marks. I've always though is very strange that people would
> have realms like:
>    ""Foo""
>
> Try with just:
>    auth_param digest realm REALM
>
>
> Amos
>
> _______________________________________________
> squid-users mailing list
> squid-users at lists.squid-cache.org
> http://lists.squid-cache.org/listinfo/squid-users