When a user clicks on a link in a web page, the user's browser moves to the specified link. When the browser requests the new page, it sends along the URL of the previous page. This "sent along" URL is called a referring URL. When users click on EZproxy starting point URLs, EZproxy can check the referring URLs and choose to automatically authenticate them without presenting the login screen. From the users' perspective, they simply click on links that lead to databases.
You can enable referring URL authentication by editing user.txt and adding one or more lines similar to these:
::referer=http://www.yourlib.org/* ::referer=http://www.yourlib.org/login/* ::referer=http://www.yourlib.org/login/password.cgi
These lines proceed from most broad to most specific. The first line would match any URL from the specified web server, the second would match any URL from the login directory (or any directory below it), and the third would match only the exact URL specified. In some instances, the URL may end up with the default port of 80 included, so you should make two entries in user.txt, one as above, and one with the explicit port. For example, if you were using the general form from above, you would also want to make the entry:
::referer=http://www.yourlib.org:80/*
Your user.txt file may have as many referring URL entries as desired to match all the possible web servers that may be referring users. However, you should only list referring URLs that come from authenticated sources.
When referring URL works, it is very convenient. It can be used in conjunction with systems like WebCT and can provide a seamless, transparent authentication environment. However, you must plan to deal with instances where it will not work.
If you use only referring URL login, these problems can occur.
In your login.htm page, it is important to provide information for users in these scenarios, and either provide them with an alternative way to login, or at least tell them that they must connect to databases from your referring URLs.