[squid-users] Mutual authentication managed by Squid

Ilya Karpov karpoftea at gmail.com
Fri Feb 20 09:14:32 UTC 2015


Hi guys,
can anyone suggest solution to make following scenario work using squid:

step1. 
Client(actually server application) calls HTTP://example <http://example/>.org squid via proxy.
 |
V 
step2. 
Proxy(Squid) understands that all calls to HTTP://example.org <http://example.org/> should be changed to HTTPS://example.org <https://example.org/>, trusts CA that uses example.org <http://example.org/> and knows client certificate to use for https client authentication
 |
V 
step3.
Origin(some server in internet) accepts https request, authenticates client, returns response

The main aim is to make client know nothing about https complexity (storing certificates/keys, knowing specific algorithms etc), and make squid manage this things.


Best regards,
Ilya Karpov
karpoftea at gmail.com



-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.squid-cache.org/pipermail/squid-users/attachments/20150220/912dc31c/attachment-0001.html>


More information about the squid-users mailing list