F5 ASM - Session and Login - Username and Password on different URLs

Question

Hi All,&nbsp;I have application where username and password coming in two different URLs and when password is coming no username parameter is passed,seems application is storing username in cookie(Not sure).&nbsp;So how we can configure session and login page for same.&nbsp;ex.&nbsp;URL  - /user/login.jspParameters - CSRF_TOKEN&amp;username=test&amp;submit=enter&nbsp;URL - /user/authenticate.jspParameters - CSRF_TOKEN&amp;password=****&amp;submit=enter  ---- here no username parameter&nbsp;Please advise.&nbsp;Thank You,Abhisar.

youssef1 · Answer

Hi Abhisar,&nbsp;to be honest i never had to do that, if I had to do it, I would do it the following way.first of all i find a point in common between the 2 pages of authentificaiton.I think you should have a session cookie or the CSRF token for example which should be similar to the 2 pages. you could perhaps confirm this point to us.&nbsp;you could then set up a tab (you can use session tab or APM too) that records the session (username). and when you are redirected to (/user/authenticate.jsp) you would add the username parameter.Do you understand the solution I offer you? if you need help to build the irule do not hesitate to ask me.&nbsp;Keep me in touch.regards

abhisar · Answer

Hi Yousuf,&nbsp;I would like to know more about "set up a tab" - you mean through iRule? I am not much familiar with iRules.

Forum Discussion

F5 ASM - Session and Login - Username and Password on different URLs

2 Replies

Recent Discussions

Error while running ansible

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Reverse Proxy Not Behaving

Related Content

Require username and password for virtual server

Unable to login on F5 GUI using default admin/admin username & password.

Automate scp transfers using password

Password Safety & Security: Passwords vs. Passphrases

Ansible module to update BIG-IP root/admin passwords