VB_95896
Jan 06, 2010Nimbostratus
SSL only when auth - HTTP>SSL>HTTP
Hi,
I'd like to (re)produce the following behavior :
When a client sends an HTTP request to a website called "host", the intermediate BigIP requires an SSL connexion (redirect client to HTTPS://host). The BigIP then asks the login and password of the client (there is an LDAP authentication profile on the HTTPS virtual server). Then, if the authentication is successful (AUTH_SUCCESS), the BigIP allow the client to connect to the website "host" using HTTP (redirect to http://host).
The purpose of this is to confine the use of SSL to the authentication process.
Here is my target configuration :
STEP1 :
A virtual server "HTTP_1" to which the client sends a 1st HTTP request (URL = HTTP://host/f5). "HTTP_1" redirects the client to HTTPS://host/ (with an iRule).
STEP2 :
A virtual server "HTTPS_1" to which are sent the requests to HTTPS://host/. "HTTPS_1" should redirect the client to HTTP://host only if the authentication is successful (AUTH_SUCCESS).
STEP3 :
The virtual server "HTTP_1" collects the HTTP request destined to HTTP://host (profile) and forwards them to the pool containing the "host".
I manage step 1 and 3 but fail to produce step 2. I can't find an iRule doing step2...
Thanks for your help.
Regards,
Vincent