Hi All,
Can help on below.
when I use config-1 as proxy rules (login page occurs, credentials are entered in the backend user is AUTHN/AUTHZ at policy server) but still redirection is not happening to protect resource and stucks at *.fcc page. Once I refresh the same page.. protected page loads as cookie is already generated.
When using case-2 as proxy rules all seem fine.
---config-1
<!-- Proxy Rules -->
<nete:proxyrules xmlns:nete="https://dev.smspsui.partners.com/" debug="yes">
<nete:cond type="host" criteria="equals">
<nete:case value="dev-smtestsso.partners.com"><nete:forward>http://192.168.10.15:500$0</nete:forward>
</nete:case>
<nete:case value="dev-smauth.partners.com"><nete:forward>https://dev-smauth.partners.com:443$0</nete:forward>
</nete:case>
<nete:default><nete:forward>http://www.ca.com$1</nete:forward>
</nete:default>
</nete:cond>
</nete:proxyrules>
---config-2
<!-- Proxy Rules -->
<nete:proxyrules xmlns:nete="https://dev-smspsui.partners.com/" debug="yes">
<nete:cond type="uri" criteria="beginswith">
<nete:case value="/siteminderagent"><nete:forward>https://dev-smauth.partners.com:443$0</nete:forward>
</nete:case>
<nete:case value="/form1/"><nete:forward>http://192.168.10.15:500$0</nete:forward>
</nete:case>
<nete:default><nete:forward>http://www.ca.com$1</nete:forward>
</nete:default>
</nete:cond>
</nete:proxyrules>
Below is my Vhost config. I have created 2 vhost. only below is the additional config i made and rest of server.conf remains with default config.
# Virtual Host for sm-test-apps
<VirtualHost name="dev-smtestsso.partners.com">
hostnames="dev-smtestsso.partners.com"
defaultsessionscheme="default"
# specify the block size for request and response in KBs
requestblocksize="4"
responseblocksize="8"
enableproxypreservehost="Yes"
<WebAgent>
sminitfile="/appl/CA/secure-proxy/proxy-engine/conf/dev-smtestsso.partners.com/WebAgent.conf"
</WebAgent>
</VirtualHost>
# Virtual Host for sm-authn
<VirtualHost name="dev-smauth.partners.com">
hostnames="dev-smauth.partners.com"
defaultsessionscheme="default"
# specify the block size for request and response in KBs
requestblocksize="4"
responseblocksize="8"
enableproxypreservehost="Yes"
<WebAgent>
sminitfile="/appl/CA/secure-proxy/proxy-engine/conf/dev-smauth.partners.com/WebAgent.conf"
</WebAgent>
</VirtualHost>
------------
Also when I use below as per "examples/proxyrules/proxyrules_example6.xml". it's not working. Is nested condition types not allowed in SPS?
<!-- Proxy Rules -->
<nete:proxyrules xmlns:nete="http://dev-smspsui.partners.com/">
<nete:cond type="host">
<nete:case value="dev-smtestsso.partners.com">
<nete:cond type="host" criteria="equals">
<nete:case value="dev-smtestsso.partners.com:443">
<nete:forward>http://192.168.10.15:500$0</nete:forward>
</nete:case>
<nete:default>
<nete:forward>http://www.ca.com$1</nete:forward>
</nete:default>
</nete:cond>
</nete:case>
<nete:case value="dev-smauth.partners.com">
<nete:cond type="host" criteria="equals">
<nete:case value="dev-smauth.partners.com:443">
<nete:forward>http://dev-smauth.partners.com$0</nete:forward>
</nete:case>
<nete:default>
<nete:forward>http://www.ca.com$1</nete:forward>
</nete:default>
</nete:cond>
</nete:case>
</nete:cond>
</nete:proxyrules>
------------------------------
Regards,
Gowtham.
------------------------------