Using the ProxySG, how do I allow a single Google doc?

book

Article ID: 167117

calendar_today

Updated On:

Products

ProxySG Software - SGOS

Issue/Introduction

I want to allow access to a single Google document without allowing access to all of docs.google.com.

Resolution

Use the following CPL to allow granular control over the Google Docs files accessed, in both transparent and explicit proxy deployments:

NOTE: SSL Interception is required if you are using an explicit connection.

<SSL-Intercept>
 ssl.forward_proxy(https) ssl.forward_proxy.issuer_keyring(default) 
 
<SSL> condition=!__is_notify_internal
 server.certificate.validate(no) 

<Proxy> url.domain="docs.google.com" ; Guarded so only docs.google.com activates layer
 condition="connect_method" Allow ; Needed for Explicit connections
 condition="google_docs_allow" Allow ; What needs to be allowed
 url.domain="docs.google.com" Deny ; Deny everything else in google docs
 
 
define condition "connect_method"
 http.method=(CONNECT)
end condition "connect method"

define condition "google_docs_allow"
    url.path.substring="/path/of/the/document"  ;  edit this to match the path of the document you are trying to reach
 url.domain="docs.google.com/static/file/client/"
end condition "google_docs_allow"