For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Aviv's avatar
Aviv
Icon for Cirrus rankCirrus
Oct 19, 2015

Prevent direct Accees to uri

Hello! Apm Question: i have a website. i need to prevent access to some uri directly from the clients. for an example: https://test.com/login/good and i want to give access to this uri only for request start with this uri : /login/try

 

i tried this irule but clients can get into the uri directly https://test.com/login/good this is my irule:

 

when HTTP_REQUEST { if { [string tolower [HTTP::uri]] starts_with "/login/try" } { HTTP::uri /login/good } }

 

how can i achieve this,

 

please help,

 

Aviv Hassidim

 

3 Replies

  • Brad_Parker's avatar
    Brad_Parker
    Icon for Cirrus rankCirrus
    Oct 19, 2015

    Have you tried just putting the URI into an SSO policy in the Start URI field?

     

  • Aviv's avatar
    Aviv
    Icon for Cirrus rankCirrus
    Oct 19, 2015

    Thanks Brad,

     

    how do i do it ? i dont use sso policy. i use pool assign after login. which sso policy i need to create?