Not respecting apache proxy settings

[adamnfish]

Hello! It seems that the open id module does not respect apache's proxy settings when making calls to the OAuth provider. This means it is impossible to use it on an apache that does not have direct connection to the internet.

Setting ProxyRemote * <my proxy> and inspecting the network activity shows that the open id module tries to talk to the OpenID provider directly, rather than going through the proxy as you would expect.

It doesn't seem like there is any way to configure a proxy setting in the module directly, so it seems like this is a bug, unless there is some other way of setting the proxy for the OpenID calls?

[sodabrew]

The ProxyRemote directive controls how Apache handles client requests. I would not want it to apply to other directives and modules - I don't think it does that for any other modules, so this isn't a surprise.

http://httpd.apache.org/docs/2.2/mod/mod_proxy.html#proxyremote

Perhaps a new and separate option like AuthOpenIDProxy http://theproxy:3128 that points at your proxy host?

[adamnfish]

That's totally reasonable. A separate option sounds great and that looks very sensible.