For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

MW1's avatar
MW1
Icon for Cirrus rankCirrus
Jul 07, 2010

Can this be done all in one Irule? - post rewrite, response rewrite , client cert auth / redirect & post reply + remember the orginal values

All,   I've been asked if I can:     1) rewrite a users login POST request to a web site, to insert a value (a remember me value) & remember the setting the user orginally choose.    ...
application delivery
dev
devops
iRules
hoolio's avatar
hoolio
Icon for Cirrostratus rankCirrostratus
Jul 08, 2010
Hi MW,

 

 

That sounds very complicated but potentially doable. I spent a little time trying to renegotiate an SSL handshake on an HTTP response and it didn't seem to work. So if you can, it might be easier to redirect clients in step 2 to a new URL that you request a client cert for. You could combine that cert request with an HTTP::retry to kill the client's session.

 

 

I'd set aside a fair amount of time to write such a rule. It would be ideal if you could upgrade to 10.1.0 or 10.2.0 so you have a current version to work on.

 

 

Aaron