[squid-users] Squid as Kerberos client?
Amos Jeffries
squid3 at treenet.co.nz
Sat Mar 17 13:47:48 UTC 2018
On 17/03/18 06:41, Patrick Nick wrote:
> Thank you. It doesn't seem that the "originserver" makes a difference to
> may case though.
>
> I was able to resolve my issue after I understood that I forgot to pay
> attention to cookies. The API expects the client to use cookies, which I
> didn't do until now, which resulted in a continuous "401 Unauthorized" loop.
>
Ah, Cookies. The bane of the Internet. They can be dealt with, but you
are not going to like the difficulty level.
Your choices AFAIK (in order of easiest to seriously tricky) are to
write an eCAP module, ICAP service, or custom external ACL helper(s)
with fairly complex squid.conf settings to use the latter.
Amos
More information about the squid-users
mailing list