Forum Discussion
CirrostratusUsing Custom OAuth Client iRules
How do I use iRules with OAuth Server Profile? What are the valid events that will fire to trigger execution. Products docs just say "attach and iRule if you want customization".
https://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-authentication-sso-13-1-0/37.html Under heading "Configuring OAuth servers for APM as a client"
2 Replies
- Nikoolayy1
MVP
Good question that still does not have an answer 🙂
JohnAltostratus
So, we noticed that the oAuth server calls out to check token with the provider didn't include SNI in the clienthello in TLS handshake. There is an option of course on the oAuth server to select a serverside ssl profile where we can set SNI, but we wanted it to be dynamic. We already use a SNI inject irule (https://my.f5.com/manage/s/article/K41600007), so just tried applying that iRule to the oAuth server and found it works! So the HTTP_REQUEST and SERVERSSL_CLIENTHELLO_SEND are valid.
