Forum Discussion

spalande's avatar
spalande
Icon for Nacreous rankNacreous
Jan 20, 2015

iRule question

for one of the application using SAML for authentication. F5 is pass through for authentication, no apm policy applied   requirement is as below.   SSO should be enabled if already login into ...
application delivery
devops
iRules
Brad_Parker's avatar
Brad_Parker
Icon for Cirrus rankCirrus
Jan 23, 2015

Will something like this possibly work for you?

when HTTP_REQUEST {
    check for session cookie and forward on to pool if exists
    if { HTTP::cookie exists MRHsession }{
        return
    }
    if no session cookie check is client is on the corporate network and forward on to pool if yes
    elseif { [IP::addr[IP::client_addr] equal 10.0.0.0/8] }{
        return
    }
    if no session cookie or not on the corporate network redirect to the public login page
    else {
        HTTP::redirect "http://[HTTP::host]/public"
    }
}