Well.. in your http_access lines it is a src type ACL that denies
access.
Try this:
acl ...
acl everyone proxy_auth REQUIRED
http_access allow public_sites
http_access allow http users_can_browse
http_access allow ftp users_can_ftp
http_access deny everyone
http_access deny all
Note: the last "deny all" line cannot actually be reached, but is left
for completeness and in case of the behaviour of proxy_auth gets changed
like discussed earlier which would also solve your problem.
-- Henrik Chemolli Francesco (USI) wrote: > To me it happened also when a proxy_auth check failed. > Either my tests were broken, or there is some flaw in the code. > > my setup: > > acl public_sites dstdomain .some.domain > acl users_can_browse proxy_auth "userlist.txt" > acl users_can_ftp proxy_auth "ftplist.txt" > acl proto_ftp url_regex ^ftp:// > acl proto_http url_regex ^http:// > > http_access allow public_sites > http_access allow http users_can_browse > http_access allow ftp users_can_ftp > http_access deny all <-- 403-generating. [1] > > [1] Maybe it should be expressed in some other way avoiding the problem > suggestions?Received on Thu Jul 05 2001 - 12:32:13 MDT
This archive was generated by hypermail pre-2.1.9 : Tue Dec 09 2003 - 16:14:05 MST