Bypass security if url contains particular string
hi,
I'm quite a newbie to F5 so apologies if I ask stupid questions!
We've got a new requirement to lock down one of our websites with 2FA for all users when accessing the site from outside of the office. I'm pretty comfortable with this part.
However an extra requirement is that there are external customers who access a a client portal and then redirects into a sub site from the site we want to lock down. We don't want this to require any authentication.
Example:
MFA applied to site: www.xyz.co.uk
Customer logs in to www.abc.co.uk
Customer clicks on link to report which redirects to:
https://xyz.co.uk/QVajaxzfc/opendoc.htm?document=Company%2f[DOCUMENTNAME]&ticket=xxxxxxxxxxxxxxxxxxxxxxx
The persistent in the redirect url is that it always contains "&ticket"
From what I've found it should be possible to take an action using an irule if a url contains "&ticket". What i'm not sure about is how I would set this up to have an access policy for the MFA and a way for that to be bypassed if this string is detected.
Can an irule be configured that would call the access policy if that condition is not met? Or in reverse is there a way of doing this same query directly through an access policy?
Or am I going down completely the wrong rounte and there is a much better way to do this?
Apologies if my question is a bit vague but i'd appreciate any assistance.
thanks