RE: Client side use of Basic Authentication, proxy.

On Thu, 30 Sep 1999, Zahid Ahmed wrote:

> Is there specific config reqmnts required  w.r.t.
> proxy configuration when a Web client running inside
> one firewall, say FW1 with a proxy#1, and Jigsaw 
> Web server running in another firewall, say FW2 with a
> proxy#2, s.t. the client sends the Basic Authentication 
> data and the Jigsaw Web Server http server completely 
> receives the Basic Auth data for authentication?
> 
> E.g., do the client-side FW proxies authenticate the
> Basic Auth data in addition to the server proxies
> and ultimately the Jigsaw Web Server? 

To authenticate on a proxy, the header used will be Proxy-Authorization,
to authenticate on a server, the header will be "Authorization". As long
as your browser is able to set those two headers, you win :)
Jigsaw configured as a proxy will emit a "Proxy-Autheticate" instead of a
WWW-Authenticate.
If both proxies needs authorization, there is a problem...
However, it can be solved using the ProxyDispatcher on the first proxy,
http://www.w3.org/Jigsaw/Doc/Reference/org.w3c.www.protocol.http.proxy.ProxyDispatcher.html
using the proxyauth directive.
Hope this helps,

      /\          - Yves Lafon - World Wide Web Consortium - 
  /\ /  \        Architecture Domain - Jigsaw Activity Leader
 /  \    \/\    
/    \   /  \   http://www.w3.org/People/Lafon - ylafon@w3.org    

Received on Tuesday, 5 October 1999 11:18:52 UTC