Skip to main content
OCLC Support

How do I block expired users in EZproxy when using SIP authentication?

Applies to
  • EZproxy

SIP2 authentication does not have a specific field it returns indicating the user is expired. It will return a message in the AF field (Screen Message) of the Patron Status Response (24). To block a user where the AF field mentions "expire" somewhere in it you can add this line to your SIP block in the user.txt file:

If auth:AF =~ "/(expire|expir)/";Deny

Or if you know the exact message returned you can look for it. For example, if your SIP server always returns "Privilege has expired" for expired users you can instead set this:

If auth:AF eq "Privilege has expired";Deny

Additional information

SIP Authentication

If you are hosted, contact OCLC Support

Page ID