Mailing List Archive: Apache: Users

Can mod_proxy authenticate against another proxy (squid) server?

Index | Next | Previous | View Threaded

devraj at gmail

Nov 20, 2009, 3:06 PM

Post #1 of 4 (433 views)
Permalink

Can mod_proxy authenticate against another proxy (squid) server?

Hi all,

I am trying to setup a reverse proxy inside our corporate network to
proxy an external web site. We wish to modify parts of the content
before we send it down the line to our users. We have a proof of
concept working and have managed to use mod_substitute to change what
we need to in the content. Currently my Apache server is connected
directly to the Internet.

As most corporate networks, our production environment has a firewall
to access content from the outside world. Ideally I would like my
Apache server to sit inside the network. To do this I need Apache
(reverse proxy) to authenticate against our squid proxy server to
fetch the content.

Can mod_proxy authenticate and route its request against squid or
another proxy server?

Thanks.

--
"The secret impresses no-one, the trick you use it for is everything"
- Alfred Borden (The Prestiege)

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe [at] httpd
" from the digest: users-digest-unsubscribe [at] httpd
For additional commands, e-mail: users-help [at] httpd

nick at webthing

Nov 20, 2009, 3:14 PM

Post #2 of 4 (420 views)
Permalink

Re: Can mod_proxy authenticate against another proxy (squid) server? [In reply to]

Devraj Mukherjee wrote:

> Can mod_proxy authenticate and route its request against squid or
> another proxy server?

What authentication method is the squid demanding? If HTTP-based,
set the headers in Apache (or if digest, you'd need have to delegate
to the browser unless you can find a digest-client module).
If not HTTP, then just allow the clients to authenticate the squid.

--
Nick Kew

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe [at] httpd
" from the digest: users-digest-unsubscribe [at] httpd
For additional commands, e-mail: users-help [at] httpd

devraj at gmail

Nov 20, 2009, 3:16 PM

Post #3 of 4 (408 views)
Permalink

Re: Can mod_proxy authenticate against another proxy (squid) server? [In reply to]

Hi Nick,

On Sat, Nov 21, 2009 at 10:14 AM, Nick Kew <nick [at] webthing> wrote:
> Devraj Mukherjee wrote:
>
>> Can mod_proxy authenticate and route its request against squid or
>> another proxy server?
>
> What authentication method is the squid demanding? If HTTP-based,
> set the headers in Apache (or if digest, you'd need have to delegate
> to the browser unless you can find a digest-client module).
> If not HTTP, then just allow the clients to authenticate the squid.
>

Thanks for the response. Authentication is set to HTTP.

Is ProxyRemote the proper directive for Apache to use another Proxy
server to get content, when implementing a Reverse proxy?

How do I add headers for outgoing requests?

Any examples or pointers would be greatly appreciated.

--
"The secret impresses no-one, the trick you use it for is everything"
- Alfred Borden (The Prestiege)

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe [at] httpd
" from the digest: users-digest-unsubscribe [at] httpd
For additional commands, e-mail: users-help [at] httpd

nick at webthing

Nov 20, 2009, 3:21 PM

Post #4 of 4 (416 views)
Permalink

Re: Can mod_proxy authenticate against another proxy (squid) server? [In reply to]

Devraj Mukherjee wrote:

> How do I add headers for outgoing requests?

with mod_headers, for example.

The rate you're asking questions, you should be on IRC
rather than the mailinglist.

--
Nick Kew

---------------------------------------------------------------------
The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:http://httpd.apache.org/userslist.html> for more info.
To unsubscribe, e-mail: users-unsubscribe [at] httpd
" from the digest: users-digest-unsubscribe [at] httpd
For additional commands, e-mail: users-help [at] httpd

Index | Next | Previous | View Threaded

Interested in having your list archived? Contact Gossamer Threads