Forum Discussion
Mick
Sep 16, 2021Cirrus
API Endpoint on LTM
Hi
I'm trying to come up with a solution to meet the following flow/requirement:
- LTM presents a VIP that is an API endpoint for a web server
- Client requests authentication using json body, e.g. https://1.2.3.4:443/api/auth -H 'Content-Type = application/json' -d '{ "username": "testuser", "password": "testpwd", "clientContext": 1 }'
- APM does LDAP authorization on behalf of the web server using the username and password in the body
- Once authorized, F5 provides token/cookie to client for further API calls.
I have tried various combinations of solutions but cannot find a way to do this simply. Looked at API endpoint protection, APM policies, iRules, can't seem to get this simple use case working...
Thanks
Mick
2 Replies
Sort By
Hi ,
I think you could use iRulesLX to parse the JSON body, set username and password as APM session variables, do LDAP Auth and then F5 sends the APM session cookie to the client.
KR
Daniel
thanks I ended up getting this working with an irule
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects