Forum Discussion

cgallimore_1748's avatar
cgallimore_1748
Icon for Nimbostratus rankNimbostratus
Jan 21, 2016

Send 401 response instead of redirecting to /vdesk/hangup.php3 page if credentials are invalid

I currently have an LTM-APM access policy setup to prompt the user for credentials, complete an AD auth and send them on to the backend server that hosts an api. I do have clientless-mode enabled via an iRule on the virtual server.

 

Our scenario is as follows: User has an app on their device that will save credentials to be passed with the request for data from our API/Restful site. If the user's password expires the api site should respond back with a 401 response in which case the app will then prompt for the users username/password again, but the APM redirects them to /vdesk/hangup.php3.

 

Does anyone have any suggestions on what to try here to get the 401 response if the credentials are incorrect?

 

Current policy

 

Thanks in advance.

 

APM
apm clientless mode
application delivery

2 Replies

Sort By
  • Stanislas_Piro2's avatar
    Stanislas_Piro2
    Icon for Cumulonimbus rankCumulonimbus
    Jan 22, 2016

    Hi,

    You can use this irule replying with 401 instead redirecting to /vdesk/hangup.php3

    when ACCESS_POLICY_COMPLETED {
   if { [ACCESS::policy result] equals "deny" } {
      ACCESS::respond 401 noserver WWW-Authenticate "Basic realm=\"Basic Authentication"" Connection close
      ACCESS::session remove
      return
   }
}