squid (pam auth) add group ?

stomach · 09-08-2005, 05:31 PM

I have a server proxy (Squid), makes validation for PAM.
I have the following one, as example:

acl anyaccess proxy_auth root
http_access allow blacklist anyaccess

The Access will be set free for the user root, of the operational system.
It is rule can be applied for a group, instead of an user?

cardy · 09-09-2005, 09:18 AM

You can sort of do groups but not utilising PAM as far as I know.

Create a file with all the usernames in the group you want (one per line)

Code:

root
user1
user2
user5

Assuming the above is saved in the file /etc/squid/group1
then change your acl entry to this.

Code:

acl anyaccess proxy_auth "/etc/squid/group1"
http_access allow blacklist anyaccess

The ACL now collects the usernames from the file rather than just ones you specify in the config file.

stomach · 09-09-2005, 09:26 AM

Thankz,
But I needed to interact with the groups, of the operational system.

It customer not to need me, when to add a new User

cardy · 09-09-2005, 10:53 AM

You would have to script the update of that file for the process to be automatic, this should be easy enough with a shell script or some perl.