Forum Discussion
iaine
Oct 24, 2019Nacreous
Hi
Have you tried adding an expression to the Resource Assign object? So something like
- sricharan61Oct 24, 2019Cirrus
Hi Iaine
I tried setting up the configuration like this.
expr {[mcget {session.oauth.client.last.id_token.groups}] =="xxxxxxx-xxxx-xxxx-x-xx"}
Static ACLs: /Common/test
Add/Delete
also
expr {[mcget {session.oauth.client./Common/AzureADB2BOauthprov.id_token.g roups}]== "xxxxxx-xxxx-xxxx-xxx-xxxxxx"}
Static ACLs: /Common/test
Add/Delete
as i saw both these entries in the access logs for the groups information in different session variable names.
but i do not see the resource assign parameter logs invoking a match for these expressions to send to ACL in the access logs