The typical solution for reverse proxies is to extract the relevant information and pass it on as either custom headers or environment variables. That works fine, assuming you make sure to ignore the headers the client might send to take that information, of course.
It's pretty easy to set up in Apache and Nginx at least.
For forward proxies, the only option is to either accept the connection unaltered or to drop the connection entirely.
Yeah, it's not bad when the backend will accept headers (e.g. remote_user), it's when it wants the actual certificate to check against a CA when it becomes an issue.
It's pretty easy to set up in Apache and Nginx at least.
For forward proxies, the only option is to either accept the connection unaltered or to drop the connection entirely.