For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

HTTP Basic Access Authentication iRule Style

I started working on an administrator control panel for my previous Small URL Generator Tech Tip (part 1 and part 2) and realized that we probably didn’t want to make our Small URL statistics and con...
Published Sep 30, 2010
Version 1.0
automation
BIG-IP
BIG-IP Access Policy Manager (APM)
isv
management
monitoring
news
security
tech tip
abrink_101915's avatar
abrink_101915
Icon for Nimbostratus rankNimbostratus
Dec 05, 2012
Here's an updated iRule for 11.x that should work:

 

 

when HTTP_REQUEST {

 

binary scan [ md5 [HTTP::password]] H* password

 

 

if { [class lookup "[HTTP::username]" authorized_users] equals $password } {

 

log local0. "User [HTTP::username] has been authorized to access virtual server [virtual name]"

 

 

Insert iRule-based application code here if necessary

 

} else {

 

if { [string length [HTTP::password]] != 0 } {

 

log local0. "User [HTTP::username] has been denied access to virtual server [virtual name]"

 

}

 

 

HTTP::respond 401 WWW-Authenticate "Basic realm=\"Secured Area\""

 

}

 

}