Cookie authentication at HTTP(S) proxy

In the context of SAML authentication using an external Identity Provider, the proxy redirects requests that do not contain a valid cookie to the authentication server. The authentication server consumes SAML assertions and stores the user's identity in a cookie.

Nested library rule set – Cookie authentication at HTTP(S) Proxy

Authentication.IsServerRequest equals false AND (

Connection.Protocol equals "HTTP" OR

Connection.Protocol equals "HTTPS") AND

Command.Name does not equal "CONNECT" AND

Command.Name does not equal "CERTVERIFY"

Cycles – Requests (and IM)

This rule set contains the following nested rule sets:

  • Set Cookie for Authenticated Clients
  • Authenticate Clients with Authentication Server