Re: Forward EZproxy request to OpenAthens

From: Xavier Tilley <000001af4cfe259a-dmarc-request_at_nyob>
Date: Fri, 27 Feb 2026 17:47:58 +0000
To: CODE4LIB_at_LISTS.CLIR.ORG 
Hi Coral,

We considered that switch too but decided against it due to the cost and our preference for self-hosted options. EZProxy config management was the driving factor in considering the switch though, so I started working on a project to make that easier. Our e-resources team has started using it to audit our stanzas, but the app still needs a lot of work. I'm hoping to open source it sometime in 2026.

Tilley
xavierti_at_buffalo.edu
________________________________
From: Code for Libraries <CODE4LIB_at_LISTS.CLIR.ORG> on behalf of Coral Sheldon-Hess <coral_at_SHELDON-HESS.ORG>
Sent: Friday, February 27, 2026 12:40 PM
To: CODE4LIB_at_LISTS.CLIR.ORG <CODE4LIB_at_LISTS.CLIR.ORG>
Subject: [CODE4LIB] Forward EZproxy request to OpenAthens

[Some people who received this message don't often get email from coral@sheldon-hess.org. Learn why this is important at https://aka.ms/LearnAboutSenderIdentification ]

Hi!

We're considering a move away from self-hosted EZproxy and one-off Shibboleth SSO connections to our vendors, to OpenAthens. People are, understandably, concerned about the migration. Obviously, we'll change the links we control, but we don't control our faculty colleagues' Canvas shells, for instance.

Since we host (and control, down to Apache settings) our own proxy server, is there some fundamental reason why we couldn't do some kind of forwarding, rewriting requests with our proxy prefix to have the OpenAthens prefix on the fly? Has anyone done this?

Even if we don't do an automatic forward, I could imagine a landing page that says something in the neighborhood of "you entered EZProxyPrefix?url=https://whatever. Please update your link to [linked]OpenAthensPrefix?url=https://whatever[/linked], or alert the owner of the site that directed you here." That feels totally doable. There's no reason that couldn't work, even if it means disabling the proxy and writing our own PHP; it shouldn't even be difficult. Right? And it could stay up for as long as we feel like maintaining our server. (Just kidding, we'd count hits and take it down when they get low enough.)

Is there something even simpler, that you did during your migration, that I'm overlooking?

The floor is open for other opinions about OpenAthens, too. The price tag is … significant, during a bad budget cycle, so, even if all the other stars align, we may not be making the switch. If you want to tell me horror stories so I don't feel bad about a potential "no," you'd probably be doing me a favor. 😁

Thanks!

--
*Coral Sheldon-Hess*
coral_at_sheldon-hess.org
Received on Fri Feb 27 2026 - 12:48:02 EST

URL: http://serials.infomotions.com/code4lib/