[squid-users] Only allow specific Users per Port

Schokobecher schokobecher at gmail.com
Sat Jan 26 03:19:03 UTC 2019


Hello,

I'm struggling quite a bit with transitioning from basic_ncsa_auth to
basic_db_auth.
I have some ports where only certain users (sometimes just one) is allowed
to connect/pass the ACL check.

I'm running Squid 3.28 on Ubuntu

I have lines like this:
acl userA proxy_auth_regex -i userA

Which reads the htpasswd file and matches the user based on the regex.
Port config looks like this:

http_port 3201 name=3201
acl userA3201 myportname 3201
cache_peer example.com parent 3300 0 no-query no-digest proxy-only
standby=60 name=up01
cache_peer_access  up01  allow userA3201
never_direct allow userA3201
http_access allow  userA3201 userA

And that for multiple Ports.

I now want to transition to basic_db_auth and got it up and running, but
the problem is that the above does not work anymore. All authed users can
now connect to every port.

UserA can use Port 3201,3202,3206 for connecting to the proxy
UserB can't use these and only can use 3315

What is the best/cleanest way to regain the above functionality?

Thank you in advance!
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20190126/002715d5/attachment.html>


More information about the squid-users mailing list