Ty_John
Mar 26, 2020Nimbostratus
Programatically configure SAML attributes using an iRule
I have a requirement to send user "roles" based on AD group membership and add these roles as multiple values to a single SAML attribute.
Currently we have all roles in a single string separated by a "|" and put into a session variable which is then applied to a SAML attribute but we need to split the roles out to be applied as multiple values of the same attribute. I need to know if it's possible to manipulate SAML attributes in an iRule. I couldn't find anything in the docs.