...
- Delegated authentication, including form-based credential replay, proxy-CAS, and delegated SAML.
- Proxying of embedded web resources, including CSS, JS, and images
- HTML Clipping
- Support regex-y whitelist of URLs to be proxied
- Actual re-written URLs should be tracked in session to prevent exploiting poorly written whitelists and turning them into proxy vulnerabilities
- Ability to load source content from the filesystem in addition to requesting remote web content
- Mechanism for adding user attributes / other interesting dynamic parameters to initial URL
- Optionally cache content and persist cookies in a database
- Ability to add HTTP headers
- Ability to re-write proxied CSS to scope the included CSS to just the proxied content