I've been using Zentyal 2.2 for a long time but now I'm preparing to migrate to 7.0
I've installed 7.0 but I'm experiencing problems with proxy module:
I need to use a filter profile that lets a group of users surf only to specific sites. So I add those domains in a list with their " allow" rules. I also enable the checkbox "Block not listed domains and URLs".
The problem is that all borwsers keep on asking for login credentials. (Same issue experienced by this users:
https://forum.zentyal.org/index.php?topic=22446.0 )
I think I've found the solution.
According to Squid Wiki:
https://wiki.squid-cache.org/action/show/Features/Authentication?action=show&redirect=SquidFaq%2FProxyAuthenticationwe could use the "all" hack in squid.conf. That is, we should add
"all" at the end of the deny ACL
excerpt from original squid.conf
http_access allow authorized grp~MYGROUP fltr2~df~dmn1
http_access deny authorized grp~MYGROUP
fixed squid.conf
http_access allow authorized grp~MYGROUP fltr2~df~dmn1
http_access deny authorized grp~MYGROUP all
With this last line squid accepts login credentials from browsers and let users surf to the allowed domains and deny all others. There are no more endless login popups.
Developers: do you think you could add this fix (or a proper one) ?
Thank you!