Send cookie to client after authenticated by APM

Question

Hi,&nbsp;I´ve a scenario that requires that the APM sends a cookie back to the client after the user has been authenticated by the APM but before the user "hits" the backend server.&nbsp;Normally I would have use the  "when HTTP_RESPONSE" to insert the cookie to the client but &nbsp;that requires the traffic has been sent by the backend server. &nbsp;&nbsp; &nbsp;&nbsp;//Cheers Mikael&nbsp;

kgaigl · Answer

we've an IRule like this:when ACCESS_ACL_ALLOWED {
   set user [ACCESS::session data get "session.logon.last.username"]
}
when HTTP_REQUEST_RELEASE {
               HTTP::header insert "X-Forwarded-User" $user
}
when HTTP_RESPONSE_RELEASE {
    log local0. "[HTTP::status] [HTTP::header "Location"]"
}so maybe you can change this to your needs, for example instead of "header insert" "cookie insert"

squeak · Answer

Hi kgaigl and thank you for your reply.I want the APM to send back a cookie after the client are authenticated but before the client reaches the backend server, so I can´t use  when HTTP_RESPONSE_RELEASEor when HTTP_RESPONSEAny more ideas?//Mikael

kgaigl · Answer

when ACCESS_ACL_ALLOWEDis when the Client is authenticated

Forum Discussion

Send cookie to client after authenticated by APM

3 Replies

Recent Discussions

Create a CSR and Key using the BigIP LTM GUI when renewing a certificate

F5 Rseries HA

Error when running bigip_command Playbook against LTM : Syntax Error: unexpected argument /bin/sh\n

Can iRule be used to perform exception of IPI category based on Geolocation

Can iRule mask the payload content on event logs of security

Related Content

Removal Cookies on Client Browser

SSL Profiles Part 8: Client Authentication

F5 BIG-IP Access Policy Manager (APM) - Google Authenticator and Microsoft Authenticator

Configuring APM Client Side NTLM Authentication

Doing mTLS Authentication per URL