Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

ACCESS::disable with policy "OAuth-Resource Server" ?

Alexandre
Altocumulus
Altocumulus

‎10-Jun-2022 07:17

Hello,

Anyone knows how if equivalent of "ACCESS::disable" is possible on "OAuth-Resource Server" apm policy?

At the end I want to allow pre-flight CORS calls to bypass the apm. I tried this irule but seems to not be working with F5 as "oauth RS", I still get response "HTTP/1.1 400 Bad Request" because of auth failed.

Thanks 

Alexandre.

 

 

 

when HTTP_REQUEST {
if {([HTTP::method] eq "OPTIONS") &&
[HTTP::header exists "Access-Control-Request-Method"] &&
[HTTP::header exists "Access-Control-Request-Headers"] &&
[HTTP::header exists "Origin"] &&
[HTTP::header Origin] ends_with "XXXXXXXXXXX" } {
#log local0. "Disable apm - [HTTP::method] - [HTTP::host][HTTP::uri]"
ACCESS::disable
}
}

 

 

 

Labels:
0 Kudos
2 REPLIES 2

boneyard
MVP
MVP

‎13-Jun-2022 10:10

when you enable the logging does it activate at the correct moment? no errors in the /var/log/ltm about wrong iRule command or such?

0 Kudos

Alexandre
Altocumulus
Altocumulus

‎30-Jun-2022 04:35

It match the if condition, but don't apply the ACCESS::disable. No big surprise as "OAuth-Resource Server" Policy are not classic apm policy...

0 Kudos
Copyright © 2023 Khoros, LLC