Forum Discussion

Adam_Ingle_1300's avatar
Adam_Ingle_1300
Icon for Cirrus rankCirrus
Jun 01, 2016

APM Forms SSO Session Logout Error Page

Good day! I am trying to get my policy to recognize when the page /Login/LogOff is being accessed. I'm using Forms Based SSO to front-end an application which is working successfully, but when the...
application delivery
BIG-IP Access Policy Manager (APM)
devops
iRules
  • Brad_Parker_139's avatar
    Brad_Parker_139
    Jun 01, 2016

    If you change the rule to have the redirect logic in the response it will allow the backend application to receive the request and close the session there as well. This will ensure both the app and APM session are closed properly.

    when CLIENT_ACCEPTED {
    ACCESS::restrict_irule_events disable
}
when HTTP_REQUEST {
    set logout 0
    if {[HTTP::uri]] equals "/Login/logoff"]}{set logout 1}
}
when HTTP_RESPONSE {
    if {$logout}{
        log local0. "logout-request-URI: local URI [HTTP::host][HTTP::uri] redirect to /vdesk/hangup.php3"
        HTTP::header replace "Location" "/vdesk/hangup.php3"
    }
}
Yann_Desmarest's avatar
Yann_Desmarest
Icon for Cirrus rankCirrus
Jun 01, 2016

This error message is displayed when you already have a pending session (so MRHSession cookies in the request) and you go to an invalid landing uri.

 

Can you trace what happens using fiddler or httpwatch ?