Forum Discussion

trx's avatar
trx
Jan 19, 2011

[HTTP::uri] in browser URL

Hello Community,

Does anyone know how the first condition can remain true until the URL IN THE BROWSER changes, making it false?

 

 

 

when HTTP_REQUEST {

 

if { ([string tolower [HTTP::uri]] contains "xyz") } {

 

 

HTTP::respond 301 Location https://[HTTP::host][HTTP::uri]

 

// Currently all the request URLs calls from the page get redirected to "http" because they are considered an independent

 

// URI request.

 

// Goal is to have all request URLs calls from the page to remain https because the URI in the browser remains true.

 

} else {

 

HTTP::respond 301 Location http://[HTTP::host][HTTP::uri]

 

}

 

}

 

 

 

 

 

 

 

Any direction is fully appreciated.

 

 

 

Regards,

 

TRX

 

application delivery
dev
devops
iRules

5 Replies

Sort By
  • hoolio's avatar
    hoolio
    Icon for Cirrostratus rankCirrostratus
    Jan 20, 2011
    Hi Trx,

     

     

    That iRule would check to see if the path or query string contained the string xyz and redirect the request to the same host and URI via HTTPS.

     

     

    Can you clarify your question? Is the issue related to something with a page that references other objects and only some requests should be redirected?

     

     

    Aaron
  • trx's avatar
    trx
    Jan 20, 2011
    Sorry for not being clear. Here is an example.

     

     

    Go to http://www.qad.com/partnercenter

     

     

    IRules will route traffic over https if browser URL shows "template.LOGIN" else route over "http".

     

     

    ex)

     

     

    when HTTP_REQUEST {

     

    if { ([string tolower [HTTP::uri]] contains "/template.login") } {

     

    Do nothing. Let traffic go through because these need to go over SSL

     

    return

     

    } else {

     

    else re-route traffic back to http from https

     

    HTTP::respond 301 Location http://[HTTP::host][HTTP::uri]

     

    return

     

    }

     

    }

     

     

    Know that the URL will show "https://www.qad.com/partnercenter", but all the href on that page will go over "http" if the URL does NOT contain "template.LOGIN".

     

    Resulting in http/https mixture pop ups on IE8/windows 7 on an ssl page URL.

     

     

    So the question is, is there a way to keep all page href request urls to go over https as long as the browser URL contains "template.LOGIN" so we can avoid SSL http/https prompts?

     

     

    Hope that helps.

     

     

    Thanks.

     

     

    Regards,

     

    TRX
  • trx's avatar
    trx
    Jan 20, 2011
    NOTE: The prompts occur before the site is redirect to "login.qad.com...".
  • hoolio's avatar
    hoolio
    Icon for Cirrostratus rankCirrostratus
    Jan 21, 2011
    As a bit of a guess, can you try this? 

    
when HTTP_REQUEST {
   if { ([string tolower [HTTP::uri]] contains "/template.login") or ([string tolower [HTTP::header Referer]] contains "/template.login") } {
       Do nothing. Let traffic go through because these need to go over SSL
      return
   } else {
       else re-route traffic back to http from https
      HTTP::respond 301 Location http://[HTTP::host][HTTP::uri]
      return
   }
}

    Aaron
  • trx's avatar
    trx
    Jun 15, 2011
    Thanks.

     

     

    The solution I went with was just redirecting back to http after the credentials URL post has been sent to the

     

    server. I did that by setting a flag to 0 and after the post URL was sent the flag is set to 1. Next request if the

     

    flag is set to 1, then route back to http.

     

     

     

    Regards,

     

    TRX