httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Laurent Tu" <>
Subject [users@httpd] Proxy authentication bypassed when serving cached content?
Date Mon, 29 Oct 2007 11:47:09 GMT

When using user authentication along with cache, I saw that user
authentication was not asked again when the content was served from the
I am using authentication inside a proxy directive:
<Proxy *>
  AuthType Basic

When the content is not cached yet, Proxy-Authenticate  is sent by the proxy
server. When the content is already cached, it provides the result even
without the client providing Proxy-Authorization header.
For example, this happens with a website like

After going through mod_cache doc, mod_proxy doc or rfc 2616, I've found
nothing about it. Can anyone please tell me if I'm understanding something
the wrong way?


View raw message