Forum Discussion
MVPApplying APM on an iframe
So we did some more testing, and this is not going to work.
We've worked with support and experimented with iRules to insert additional headers and cookies into the response, but the behaviour of CORS is that these are always going to be removed. And because APM relies heavily on cookies to function, it does mean that accessing APM-protected content from an iFrame will fail to work.
MVPHello Aubrey, we've agreed with support on building a workaround to this.
We haven't discussed software fix.
Regards
CA
Cirrus- CA_Valli
Hello Jonathan_c
the 'workaround' was disabling APM access for that request via iRule, so that iFrame loads all components.
In our case backend server runs 401 NTLM auth which was originally supported through APM and returns classic auth template when APM is disabled.
- Jonathan_c
Thanks 🙂
Omar95Altostratus
Hello CA_Valli ,
Thank you for sharing all this information it very helpfull.
Do you mind to share how did you achieve this (Irule, specific config ...)?
Thank you very much
- CA_Valli
iRule kinda looks like this.
I suggest you to raise a support case if you need specific tuning.when HTTP_REQUEST { if { $host eq "apmprotected.mybusiness.com" && [HTTP::header exists "Referer"]}{ set referer_host [string tolower [URI::host [HTTP::header "Referer"]]] if { $referer_host ne "partnerportal.company.com" && $referer_host ne "apmprotected.mybusiness.com"}{ # iframes in unauthorized portals get redirected to main auth # notice I had to include my own portal as "authorized" to correctly load scripts,css,etc. HTTP::respond 302 Location "https://apmprotected.mybusiness.com/" } else { # i have a big list of IFs here to match specific conditions ACCESS::disable } } }
