Forum Discussion
Posterus_85681
Nimbostratus
Nimbostratusclientless-mode, session-cookie and policy re-evaluation
Hi Everyone,
I am trying to use the inbuilt OTP functions within APM, so that they can be consumed by other systems that want to use OTP.
I have managed to use clientless-mode and have a sy...
Stanislas_Piro2
Cumulonimbus
CumulonimbusHi,
when ACCESS_POLICY_COMPLETED is raised, you cannot reevaluate the policy.
if you want to execute a irule in the policy evaluation, you can raise ACCESS_POLICY_AGENT_EVENT event:
when ACCESS_POLICY_AGENT_EVENT {
if {[ACCESS::policy agent_id] == "otp"} {
ACCESS::respond 200 OTP [ACCESS::session data get "session.otp.assigned.val"] SID [ACCESS::session data get "session.user.sessionid"] Connection Close }
}
In ACCESS_POLICY_COMPLETED event, filter answer with Access policy result:
when ACCESS_POLICY_COMPLETED {
Authentication request for non bowser user-agent session denied
if { ([ACCESS::policy result] equals "deny") } {
...
}
}
