[PATCH] [2.5] external_acl_type cannot deal with client's source port

From: Vincent Deffontaines <vincent.deffontaines@dont-contact.us>
Date: Thu, 22 Jul 2004 18:29:01 +0200 (CEST)

Greetings!

In the scope of the NuFW (http://www.nufw.org) project, I am working on
building Single Sign On modules for open source projects.

Right now, only an Apache module exists, but the Squid module is on the
way, and will be available very soon, thanks to the external acl features.

There is though a small problem in this design : for proper SSO, the Nufw
"auth module" needs to know about the source port of the client which
performed the request. Right now external_acl_type does not allow for this
information to be passed.

This is what this (minimal) patch is about : add usability of %SRCPORT to
the FORMAT string of the external_acl_type directive.

Attached are also patches for cf.data.pre and squid.conf.default, so that
things in the package are all up to date. If you accept this patch, you'll
probably want to update
http://devel.squid-cache.org/external_acl/config.html as well.

This patch is against 2.5.5.

I will post another patch, for 3.0-PRE3, in the next few days.
And I will announce to this list the availability of the Nufw external acl
program, with the hope some people here will be interested in testing Nufw
and its SSO capabilities.

Please Cc: any reply to me, as I am not a list subscriber.
Your comments, flames or questions will be welcome.

Regards,

Vincent

Received on Sun Jul 25 2004 - 04:30:38 MDT

This archive was generated by hypermail pre-2.1.9 : Sat Jul 31 2004 - 12:00:03 MDT