User inactivity timeout using external_acl_type



  • I've been writing my own squid helper to do behind-the-scenes SSO for workstations. I'm curious if anyone on here has experience with having users timeout after being idle for enough time. I've found that setting the TTL and Grace work, but I was hoping for a better method.

    Also, does anyone know a method of manually logging out a user from Squid? I've been through the documentation a few times, and it doesn't seem to be an obvious thing.

    Both of these questions stem from a problem we have in our company where a user with less internet privileges will log off and another user with more privileges will log on, but the firewall won't yet know of the switch. Any help is appreciated, thanks.



  • I'm king of looking into the ext_acl helper as well but was not able to get squidtrust to work.

    Are you using squidtrust?



  • I looked at SquidTrust, but didn't want to have to run an agent on every workstation. I ended up writing my own in PHP that talks to a Windows server that has an agent written in Powershell. It's a bit rough still, but so far works fairly well.



  • @mbarnes:

    I looked at SquidTrust, but didn't want to have to run an agent on every workstation. I ended up writing my own in PHP that talks to a Windows server that has an agent written in Powershell. It's a bit rough still, but so far works fairly well.

    Is it something that you are willing to share? It would be much appreciated.



  • Sure, I'm willing to post it after some of the bugs are fixed. Maybe some talented community people could improve upon it from there.


Log in to reply