Help sending APM SAML info back to pool member

patonbike · ‎16-Sep-2020

I am trying to reformat SAML assertion data received through t he APM and send the info back to the pool member in a format that the pool member understands.

I am able to get the data I need and put it into a variable. For example:

when ACCESS_POLICY_COMPLETED {
set membernumber [ACCESS::session data get "session.saml.last.attr.name.membernumber"]
log local0. "$membernumber"
}

When I go to try to use that variable later on , it is not available.

when HTTP_REQUEST {
if { [info exists membernumber]  } {
 log local0. "$membernumber"
}

Should this be available during other events?

I have also tried https://support.f5.com/csp/article/K00379500 which is inserting the saml assertion info into a header... But I am not seeing this header actually getting passed back to the pool member. What am I missing?

I have tried doing some logging.. and the data I need/want is there during ACCESS_POLICY_COMPLETED but after ACCESS_POLICY_COMPLETED the data gets lost somehow.

Yoann_Le_Corvi1 · ‎16-Sep-2020

Hi

Try in the HTTP_REQUEST_RELEASE event if it has to be sent to the backend.

Yoann

patonbike · ‎16-Sep-2020

Thanks, that is helpful. The only thing I can't seem to do is convert the request going to the backend server from a GET to a POST, but I am now able to pass the values through either inthe form of a header or a GET request.

DevCentral

Help sending APM SAML info back to pool member

Register For AppWorld 2024

F5 Receives Six Trust Radius
Best of 2023 Awards

F5 XC WAF

F5 BIG-IP

DevCentral

Help sending APM SAML info back to pool member

Register For AppWorld 2024

F5 Receives Six Trust Radius Best of 2023 Awards

F5 XC WAF

F5 BIG-IP

F5 Receives Six Trust Radius
Best of 2023 Awards