[squid-users] Multiple http_access logic at the same time
Antony Stone
Antony.Stone at squid.open.source.it
Mon Apr 17 08:31:20 UTC 2017
On Monday 17 April 2017 at 08:35:28, Serhat Koroglu wrote:
> Hello,
> I'm trying to manage squid users to access the proxy if they logged in and
> the site url is allowed in my url list. They are running one by one. If
> logged in accesses but not check the url and vice versa.
So, are you saying that the users must be logged in, *and* the URL they are
accessing is on your list, otherwise the request is denied?
> But I want both of them. Here is my config part.
>
> auth_param basic program /usr/bin/php /var/www/html/sqauth.php
> auth_param basic children 20
> auth_param basic realm Username and password
> auth_param basic credentialsttl 5 hours
>
> acl AuthenticatedUsers proxy_auth REQUIRED
>
> acl allowed_sites dstdomain "/etc/squid/allowedsites.txt"
> acl all_others dst 0.0.0.0/0.0.0.0
>
> http_access allow allowed_sites
> http_access deny all_others
> http_access allow AuthenticatedUsers
That last line can never be executed, because the one before "deny all_others"
simply blocks everything.
I think what you want is simply:
http_access allow AuthenticatedUsers allowed_sites
http_access deny all_others
Antony.
--
I just got a new mobile phone, and I called it Titanic. It's already syncing.
Please reply to the list;
please *don't* CC me.
More information about the squid-users
mailing list