How exactly does the squid server send the proxy authorization header?
Is it litterally:
Proxy-Authorization: Digest username="user1" ,realm="realm1", nonce="xxxxxx"......
Where "username" is the first value, followed by realm?
There is a ruleset in the library called "Lookup Username From "Proxy-Authorization: Basic" Header" which is similar to what you most likley want.
Give this a shot, please test it under a couple of different scenarios. Try HTTP, HTTPS (with SSL scanner on and off).
Let me know if it works!
After I found the small error (the mistake was in my first mail too; there is no space between " and ,realm) it works perfectly.
I cannot test with SSL-Scanner, becuase this option we didn't use.
But with the normal policies for blocking and coaching it works very fine.