Forum Discussion
Stanislas_Piro2
Oct 06, 2015Cumulonimbus
So, does it work???
APM session cannot be re-evaluated... if you want to store OTP password, you can create a table value in the generate branch and read it in the verify branch:
when ACCESS_POLICY_AGENT_EVENT {
switch -glob [string tolower [HTTP::header "User-Agent"]] {
"otpgenerate" { table add -subtable "OTP" [ACCESS::session data get "session.logon.last.username"] [ACCESS::session data get "session.otp.assigned.val"] indef 60 }
"otpverify" { ACCESS::session data set "session.otp.assigned.val" [table lookup -subtable "OTP" [ACCESS::session data get "session.logon.last.username"]] }
}
}
you must add irule event boxes in the VPE to raise this irule with IDs otpgenerate or otpverify.