BIG-IP iRulesLX FakeADFS - WS-Federation/SAML11
Published Jan 05, 2017
Version 1.0Was this article helpful?
I use ACCESS_POLICY_AGENT_EVENT so that an irule event agent can fire the specific event needed, and also allow other evaluations to happen in the APM policy before ACCESS_POLICY_COMPLETED. Also, ILX is not integrated into APM, so if you want to add logging events and other agents after generating the WS-Fed token you have more visibility.
Also, the plan is to eventually combine with a few other IDAM projects so that you can use ACCESS_POLICY_AGENT_EVENT so that it would be possible to just call out different functions within irulesLX.
This is also just an example proof of concept.