To prevent IWA authentication failure with Microsoft Edge in a transparent deployment, do the following:
<Proxy>
; Allow OPTIONS and POST without authentication, since Edge won’t let ProxySG to redirect them.
; OPTIONS is a CORS “preflight” request which can’t be redirected.
allow http.method=OPTIONS||POST
authenticate(iwa_realm) authenticate.mode(origin-cookie-redirect)
<Proxy>
; Add CORS headers to allow inline requests to be redirected to the virtual URL and back again.
request.x_header.Origin.exists=yes action.cors(yes)
define action cors
set(exception.response.x_header.Access-Control-Allow-Origin,"$(request.x_header.Origin)")
set(exception.response.x_header.Access-Control-Allow-Credentials, "true")
set(response.x_header.Access-Control-Allow-Origin, "$(request.x_header.Origin)")
set(response.x_header.Access-Control-Allow-Credentials, "true")
end