proxy-auth
Applicable in AuthTrans-class directives.
The proxy-auth function of the AuthTrans directive translates authorization information provided through the basic proxy authorization scheme. This scheme is similar to the HTTP authorization scheme but doesn’t interfere with it, so using proxy authorization doesn’t block the ability to authenticate to the remote server.
This function is usually used with the PathCheck fn=require-proxy-auth function.
Syntax
AuthTrans fn=proxy-auth auth-type=basic dbm=full path name AuthTrans fn=proxy-auth auth-type=basic userfile=full path name grpfile=full path name
Parameters
The following table describes the parameter values for the proxy-auth function.
Table 5–37 proxy-auth Parameter Values|
Value |
Description |
|---|---|
|
auth-type |
Specifies the type of authorization to be used. Set the type to “basic” unless you are running a UNIX proxy and are going to use your own function to perform authentication. |
|
dbm |
Specifies the full path and base file name of the user database in the server’s native format. The native format is a system DBM file, which is a hashed file format allowing instantaneous access to large number of users. If you use this parameter, don’t use the userfile parameter. |
|
userfile |
Specifies the full path name of the user database in the NCSA-style httpd user file format. This format consists of name:password lines where password is encrypted. If you use this parameter, do not use dbm. |
|
grpfile |
(optional)Specifies the NCSA-style httpd group file to be used. Each line of a group file consists of group:user1 user2...userN, where each user is separated by spaces. |
Example
A UNIX example:
AuthTrans fn=proxy-auth auth-type=basic dbm=/usr/ns-home/proxy-EXAMPLE/userdb/rs A Windows NT example: AuthTrans fn=proxy-auth auth-type=basic userfile=\\netscape\\server \\proxy-EXAMPLE\\.htpasswd grpfile=\\netscape\\server \\proxy-EXAMPLE\\.grpfile |
You can have a user-provided function perform authentication by passing the user-fn parameter to the proxy-auth function.
Syntax
AuthTrans fn=proxy-auth auth-type=basic user-fn=your function userdb=full path name
Parameters
The following table describes the parameter values for the user provided proxy-auth function.
Table 5–38 user provided proxy-auth parameter values|
Value |
Description |
|---|---|
|
user-fn |
Specifies the name of the user-provided function that to be used to perform authentication in place of the built-in authentication. If authentication succeeds, the function returns REQ-PROCEED and if authentication fails, it returns REQ-NOACTION. |
|
userdb |
Specifies the full path and base file name of the user database in the server’s native format. The native format is a system DBM file, which is a hashed file format allowing instantaneous access to large numbers of users. |
- © 2010, Oracle Corporation and/or its affiliates