kevin <kevinsmbox at earthlink.net> wrote: > I want to do it in post-auth and post-proxy which cannot be done by > "users". I thought that's why we use rewrite_filter/attr. No? You can put the checks in the "authorize" section, and it will work. Alan DeKok.