Technical Forum
Ask questions. Discover Answers.
cancel
Showing results for 
Search instead for 
Did you mean: 

Using Custom OAuth Client iRules

Walter_Kacynski
Cirrostratus
Cirrostratus

How do I use iRules with OAuth Server Profile? What are the valid events that will fire to trigger execution. Products docs just say "attach and iRule if you want customization".

 

https://support.f5.com/kb/en-us/products/big-ip_apm/manuals/product/apm-authentication-sso-13-1-0/37... Under heading "Configuring OAuth servers for APM as a client"

 

2 REPLIES 2

Good question that still does not have an answer 🙂

 

John
Nimbostratus
Nimbostratus

So, we noticed that the oAuth server calls out to check token with the provider didn't include SNI in the clienthello in TLS handshake.  There is an option of course on the oAuth server to select a serverside ssl profile where we can set SNI, but we wanted it to be dynamic.  We already use a SNI inject irule (https://my.f5.com/manage/s/article/K41600007), so just tried applying that iRule to the oAuth server and found it works!  So the HTTP_REQUEST and SERVERSSL_CLIENTHELLO_SEND are valid.