[ previous ] [ next ] [ threads ]
 
 From:  "Jonathan De Graeve" <Jonathan dot De dot Graeve at imelda dot be>
 To:  "Russell Ashdown" <russell at ashdown dot net dot au>, <m0n0wall dash dev at lists dot m0n0 dot ch>
 Subject:  RE: [m0n0wall-dev] Captive Portal and HTTP Proxy
 Date:  Fri, 2 Dec 2005 11:11:57 +0100
We are not working with cookies in here.
 
The only thing todo this is to use the 'HTTP_X_FORWARDED_FOR' http header as the clientip
And not all proxies sent this field. If you have a proxy you should enable it to sent this header.
 
I will work on a captive portal enhancement for this if its really necessary.
 
Can't you just put the http proxy AFTER the m0n0wall box instead of before? And even then you can
enable authentication on the proxy resulting in no need for a captive portal.
 
Kind Regards,
 
J.

________________________________

Van: Russell Ashdown [mailto:russell at ashdown dot net dot au]
Verzonden: vr 2/12/2005 10:54
Aan: m0n0wall dash dev at lists dot m0n0 dot ch
Onderwerp: [m0n0wall-dev] Captive Portal and HTTP Proxy



When accessing the Captive Portal via a HTTP proxy (squid), all it takes
is for one user to enter a valid userid and password tuple to enable ALL
users to access the web.  This is because Captive Portal filters on IP
address (which turns out to be the Squid proxy).

Is it possible in future releases to have a configuration option in the
Captive Portal setup to enable the Captive Portal to set a cookie to
identify users who have logged in through a proxy.  If the user chooses
to disable cookies, she/he would be forced to login to the portal for
each web page visited.

For now, I have disabled the squid proxy so that Captive Portal works.
This is not a long-term solution, at some time I will be forced to
re-enable Squid and then lose the Captive Portal.


---------------------------------------------------------------------
To unsubscribe, e-mail: m0n0wall dash dev dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash dev dash help at lists dot m0n0 dot ch