Joe_Pipitone
Nov 07, 2012Nimbostratus
Rewrite/redirect before SSL handshake
We have an interesting scenario that would all go away if we could just get rid of this old legacy system, but for now it's here to stay.
We have an application that is using IIS basic authentication to log users in (please, don't ask)
I have implemented SSL and have a certificate in place. The certificate is for subdomain.newdomain.com.
This is what happens:
User goes to:
http://subdomain.olddomain.com/somepage.asp
this gets rewritten to:
https://subdomain.newdomain.com/somepage.asp
If the user goes to:
https://subdomain.olddomain.com/somepage.asp
They get a certificate mis-match error, becuase my rewrite/redirect iRule does not take precendence over the SSL hand-shake. We also have IIS basic authentication trying to re-authenticate the user because it's a different domain.
I'm curious to know - is there a way to force the rewrite before the SSL handshake?
If not, people are just going to have to live with it and use the correct URL. Thank you for any insight you may have.