At the school I netadmin, I have a Squid web proxy on the school LAN, configured to chain to an upstream proxy using
cache_peer proxy.oursubdomain.example.com parent 3128 0 no-query no-digest no-netdb-exchange login=PASS
Upstream is in the process of cutting over from using its own web proxy to using zscaler.com instead. Migrating all the existing user accounts is easily done in bulk; no problem there. But because zscaler is a shared service, its usernames are formatted like email addresses, so instead of sending usernames like flabdablet
to upstream's proxy, I will need to send usernames like firstname.lastname@example.org
I would rather not make my users type all that stuff every time they start up a browser. I would rather they didn't even notice the cutover when it happens. So I would like to tell my local Squid to append @oursubdomain.example.com
to any username it collects from a user's browser before passing the username and password along to gateway.zscaler.net.
How can I do that?