Forum Discussion

Cirrocumulus

Jan 31, 2023

Per Request access policy with OAuth Client Subroutine

I have a per request policy with a URI that is protected with a OAuth Client Typically this works by using 302 redirect either to /my.policy and then 302 to the OAuth server to get a new token My p...

APM SSO OAuth

devops

Juergen_Mang
Jan 31, 2023
You can replace the 302 with 401 in the HTTP_RESPONSE_RELEASE event.

Don't forget to set:

ACCESS::restrict_irule_events disable

Juergen_Mang

MVP

Have you tried the clientless mode?

when HTTP_REQUEST {
    HTTP::header insert "clientless-mode" 1
}

AlexS_yb

Cirrocumulus

Jan 31, 2023

I believe that will stop the 302 to /my.policy

but will it stop the 302 to the oauth server to get a new / or renew a OAuth access token ?

Forum Discussion

Per Request access policy with OAuth Client Subroutine

Recent Discussions

self-directed requests fail because of no certificate

Decode ObjectSID from Base64-encode string

iRule - Url rewrite and header replace and pool selection not working

ip x-forwarding

F5 ASM API-Protection Policy

Related Content

Per-Request subroutine loop setup?

Is accessing session variables from per-request subroutine possible?

F5 Website Accessibility Survey

Memcached Request Routing iApp Template

Can the access policy variable session.logon.last.password be passed to a per-request policy subroutine?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS