Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

Redirect authenticated request

cyclops49
Nimbostratus
Nimbostratus

‎11-Sep-2022 20:41

We have two web app with same security-domain

http://10.10.1.113/gateway/index.jsp

http://10.10.1.113/dealing/

Big-IP set mapping mysite.com to 10.10.1.113

User browses http://mysite.com/gateway/index.jsp

10.10.1.113/gateway/index.jsp received request OK, then we did

HttpServletRequest.login(user, pass)

HttpServletResponse.sendRedirect("http://mysite.com/dealing/");

But web app "dealing" will popup login page, seems authenticated data lost...

If we don't use Big-IP

1. http://10.10.1.113/gateway/index.jsp

2. requet.login then repose.redireect to http://10.10.1.113/dealing/

3. http://10.10.1.113/dealing/ will display home page just like user logined

 

How to config Big-IP to redirect authenticated request ?

 

Labels:
0 Kudos
3 REPLIES 3

JoshBecigneul
MVP
MVP

‎12-Sep-2022 09:40

Hi @cyclops49 

You should verify whether the application is setting session cookies that have (or don't have) the domain or path parameters set. If these don't match the various paths and domain correctly then the session doesn't "redirect". You should be able to track this using the network inspector in the browser's dev tools and then compare against the app's configuration.

Thanks,
Josh

0 Kudos

cyclops49
Nimbostratus
Nimbostratus
In response to JoshBecigneul

‎13-Sep-2022 02:34

Hi JoshBecigneul

Thanks for your reply.

Our app server is JBOSS EAP 7, and we also enable SSO in the server, so if user request

http://10.10.1.113/gateway/index.jsp

and login, then redirect to

http://10.10.1.113/dealing/

we don't need to login again and we could found cooke named JSESSIONIDSSO.

But if we change ip "10.10.1.113" of url to domain  name "mysite.com" and setup mapping in Big-IP,

seems JSESSIONIDSSO did not redirect to http://mysite.com/dealing/

we could not find cookie JSESSIONIDSSO in the browser dev tool and http://mysite.com/dealing/ popup login page.

How  to setup rule of Big-IP to redirect JSESSIONIDSSO ?

Many thanks.

 

 

0 Kudos

JoshBecigneul
MVP
MVP
In response to cyclops49

‎14-Sep-2022 07:41

Hi @cyclops49 

It might be a good idea to open a case with Red Hat to get some support in configuring the system to do SSO with a load balancer involved. 

0 Kudos
Copyright © 2023 Khoros, LLC