Topic: Reverse Proxy Authentication Part 2!

[drhigh5]

Hi, this is directed mainly at GLSmith who was so helpful before (if you are out there!) or anyone else that can help.

A year ago or so I set up a reverse proxy with Apache on a Windows 2008 server. I got it working nicely with password authentication and I can lock it down to IP address access too.

I didn't take it any further but now I have resumed the project.
I have a problem in that if I provide the proxy with a locked down IP address, every time the user's IP changes the proxy will no longer work.

So what I want to be able to do is to open the proxy and restrict multiple logins of the same username (from a given username and password that is generated using .htpasswd)
I.e. If that username is already accessing the proxy then it will prevent another user using the same username and password from logging in anywhere else or it will kick out the current user.

Any ideas how to do this people?

[James Blond]

AFAIK restricting multiple logins over apache is not possible. That must be handled in the application.

[drhigh5]

Thanks for your reply.

What application(s) are you referring? I've set up as a reverse proxy so can browse on other pcs through the servers ip and designated ports.

[James Blond]

I thought you made it this way

client<--->reverse_proxy<--->backend_server:8080

if it is like this the login should be handled by the backend_server