Opt-out via own URL


at the moment the login and the output of opt-out is realized via the index.php. Why?

The problem is that we want to filter the requests for login and opt-out for security reasons. The login should only be available after login in a seperate security-system which authenticates via sms and filters the ip.

So, the problem is that mod_proxy can not filter query_strings but can forward post-requests normally.
But the request for opt-out is done via paramters:


So i have to use mod_rewrite which can filter query_strings but cannot forward the post-request as it should. These are the rewrite rules:

                RewriteEngine On
                RewriteCond %{REQUEST_URI}      ^/index.php$
                RewriteCond %{QUERY_STRING}     ^module=CoreAdminHome&action=optOut&language=de$
                RewriteRule  ^(.*)$             http://HOST:PORT/index.php?module=CoreAdminHome&action=optOut&language=de [P]
                RewriteCond %{REQUEST_URI}      ^/index.php$
                RewriteCond %{QUERY_STRING}     ^module=CoreAdminHome&action=optOut&language=en$
                RewriteRule  ^(.*)$             http://HOST:PORT/index.php?module=CoreAdminHome&action=optOut&language=en [P]

So, the problem is that we can see the opt-out, but cannot use is.

I think it would be nice if the output of the opt-out is realized with an own url or via piwik.php.

Because the piwik.php should be available from everywhere without an filter e.g. ip-filter.

Thank a lot.