Re: [squid-users] acl based on request body(http post fields)

From: Alex Rousskov <rousskov_at_measurement-factory.com>
Date: Mon, 08 Sep 2008 23:50:37 -0600

On Tue, 2008-09-09 at 15:32 +1200, Amos Jeffries wrote:
> > Hello
> >
> > I want to have some access control lists(acl) based on the content of
> > the request body. for example I need to block some requests which have
> > a special value in a field of a form which is submitted via http POST.
> > external_acl_type directive does not have any format string to
> > redirect whole request body to an external helper(authenticator). It
> > just can redirect request header not request body.
> >
> > Any idea?
> >
>
> Body processing is far too complex to be done via the ACL available in Squid.
> You will need a content adaptation filter seperate from Squid. The best
> way to do that currently is with Squid-3 and an ICAP server which
> processes things the way you want.

... followed by an eCAP Squid plugin if you deploy in October or
November.

In both cases, you will need to write a plugin (for the ICAP server or
for Squid).

HTH,

Alex.
Received on Tue Sep 09 2008 - 05:51:17 MDT

This archive was generated by hypermail 2.2.0 : Tue Sep 09 2008 - 12:00:02 MDT