For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

navgup_66025's avatar
navgup_66025
Icon for Nimbostratus rankNimbostratus
Aug 08, 2013

Auth_Status and Persist

1) I have PoolK and PoolF and default pool has to be PoolK   2) first client request always go to PoolK   3) Check if client has been authenticated to PoolK using Auth_status command, if YES pe...
application delivery
dev
devops
iRules
Kevin_Stewart's avatar
Kevin_Stewart
Icon for Employee rankEmployee
Aug 12, 2013

Haven't had a chance to look at Fiddler traces yet, but here's an idea. Add a new cookie when the 401 response comes through. Something like this:

when HTTP_REQUEST {
   if { ( [string tolower [HTTP::uri]] starts_with "/nad" ) or ( [HTTP::cookie exists AUTHTOKEN] ) } {
       pool poolK
   }
}
when HTTP_RESPONSE {
    if { [HTTP::status] equals "401" } {
        HTTP::cookie insert name AUTHTOKEN value 1
    }
}

Hopefully the traces will show why the client isn't sending the Authorization header though.