Forum Discussion
caz
Apr 15, 2024Nimbostratus
Disacard SSL::cert mode to ignore when default SSLClient profile is set to request or require
My need: I want to have one unique VIP to handle both non-secure traffic for UI service and also to secure API services. For the API, I have 2 cases: jwt is provided, I need to have the SSL::cert ...
doria786
Nimbostratus
In the HTTP_REQUEST event, we check if the clientId exists in the JWT claims. If it does, we require an SSL certificate. Otherwise, we ignore it. The URL path-based logic ensures that specific paths are handled differently. In the HTTP_REQUEST_SEND event, we handle the client certificate details.
caz
Apr 18, 2024Nimbostratus
Thanks for the insight, any chance you share your irule logic?
Recent Discussions
Related Content
DevCentral Quicklinks
* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com
Discover DevCentral Connects