Forum Discussion

fredlubrano's avatar
fredlubrano
Icon for Cirrus rankCirrus
Nov 14, 2023

Custom APM Logon page Access policy evaluation is already in progress for your current session

Hello, I am trying to solve a problem as I am blocked by the following message, When I click on the link '<p>Please register <a href='/register.php'>here</a> if you don't have an account yet.</p>'...
security
  • fredlubrano's avatar
    fredlubrano
    Nov 19, 2023

    Hello, I think I need to take a vacation 🙂 It's just a small irule and a landing URI issue. Fred.

     

     

    when HTTP_REQUEST {
    # Log de début
    log local0. "Début de traitement de la requête : [HTTP::uri] avec le referer : [HTTP::header "Referer"]"

    # Vérifiez si l'URI et le referer correspondent à vos critères
    if { [HTTP::uri] equals "/register.php" and [HTTP::header "Referer"] equals "https://ilove.mama.net/my.policy" } {
        
        # Vérifiez la valeur de la variable de session F5 APM
        set policyResult [ACCESS::session data get "session.policy.result"]
        log local0. "session.policy.result = $policyResult"

        # Si la variable de session n'est pas 'allow', supprimez les cookies
        if {$policyResult ne "allow"} {
            log local0. "La condition de session APM est remplie. Suppression des cookies."

            # Supprimez les cookies MRHSession et LastMRH_Session
            HTTP::cookie remove "MRHSession"
            HTTP::cookie remove "LastMRH_Session"
        } else {
            log local0. "La condition de session APM n'est pas remplie. Les cookies ne sont pas supprimés."
        }
    }

    # Log de fin
    log local0. "Fin de traitement de la requête : [HTTP::uri]"
}

     

     

fredlubrano's avatar
fredlubrano
Icon for Cirrus rankCirrus

Hello, I think I need to take a vacation 🙂 It's just a small irule and a landing URI issue. Fred.

 

 

when HTTP_REQUEST {
    # Log de début
    log local0. "Début de traitement de la requête : [HTTP::uri] avec le referer : [HTTP::header "Referer"]"

    # Vérifiez si l'URI et le referer correspondent à vos critères
    if { [HTTP::uri] equals "/register.php" and [HTTP::header "Referer"] equals "https://ilove.mama.net/my.policy" } {
        
        # Vérifiez la valeur de la variable de session F5 APM
        set policyResult [ACCESS::session data get "session.policy.result"]
        log local0. "session.policy.result = $policyResult"

        # Si la variable de session n'est pas 'allow', supprimez les cookies
        if {$policyResult ne "allow"} {
            log local0. "La condition de session APM est remplie. Suppression des cookies."

            # Supprimez les cookies MRHSession et LastMRH_Session
            HTTP::cookie remove "MRHSession"
            HTTP::cookie remove "LastMRH_Session"
        } else {
            log local0. "La condition de session APM n'est pas remplie. Les cookies ne sont pas supprimés."
        }
    }

    # Log de fin
    log local0. "Fin de traitement de la requête : [HTTP::uri]"
}

 

 

Lucas_Thompson's avatar
Lucas_Thompson
Icon for Employee rankEmployee
Nov 20, 2023

OK great! Sounds like you got it worked out.

This is another situation where APM's weird "Landing URI" type session setup and handling is different than a normal web app.