Re: [squid-users] proxy auth timeout config

From: Henrik Nordstrom <hno@dont-contact.us>
Date: Tue, 31 May 2005 13:44:15 +0200 (CEST)

On Mon, 30 May 2005, Rolf wrote:

> Can someone clarify for me the squid config directives that control how long
> proxy auth credentials are kept for?

The proxy asks for the credentials on each and every request. The only
caching of the credentials done by Squid is that if caches validity of the
password avoiding having to ask the backend database if the password is
still valid on each request.

> I have basic auth working fine here and I think I set it up for re-auth every
> hour. But I have been noticing that sometimes one can go for days and in any
> event much longer than an hour before being asked for credentials again. The
> username is logged for proxy activity ok, its just not asking for auth as
> regularly as I expected. The only perfect way to get re-auth'd is to quit to
> restart the browser.

Correct. This is because it is your browser who maintains the session.
This is outside of the control of the proxy.

> What directives do I need to set to get this working so that say, every hour,
> auth is requested (irrespective of user activity)?

This is highly dependent on if the browser has support for this or not,
and needs to be configured within the browser settings.

Regards
Henrik
Received on Tue May 31 2005 - 05:44:20 MDT

This archive was generated by hypermail pre-2.1.9 : Wed Jun 01 2005 - 12:00:04 MDT