Forum Discussion
Kevin_Stewart
Sep 27, 2013Employee
The ACCESS_POLICY_AGENT_EVENT event is intended to work mid-policy evaluation, which by logic means the cookie exists (you're already in the access session), and that the session table exists and can be queried. In other words, you don't need to check for the cookie because you know it exists if you've triggered this event. And because you've triggered this event in a specific point of the visual policy path, you have relative certainty that the session variable you need also exists.
This method is much easier than having to check if the session exists in the HTTP_REQUEST event.