search cancel

Web Agent Ajax pattern wildcards within protected resources


Article ID: 228740


Updated On:


CA Single Sign On Agents (SiteMinder) SITEMINDER



When running Web Agent, when an Ajax application makes a HTTP call to
/rocfm/fm/commonService resource, the Web Agent redirect the request
to the Credential Collector :

  [*][][myWebAgent][/myApp/mypage/page][] [Resource is protected from cache.]

  [Redirecting to credential collector

Can an expression like /rocfm/in.* be used and defined in
overlooksessionurls and is there any solution to update dynamic Ajax
pattern ?




At first glance, if the Ajax application sends the request to
/myApp/mypage/page without sending a SMSESSION cookie along, this
issue is as expected.

OverlookSessionForUrls doesn't support wildcards (1).

To handle Ajax resource, the ACO parameter WebAppClientResponse for
which the resource value can include a wildcard (2).


Additional Information



    Webagent OverlookSessionForUrls ACO and wildcards usage

      A multi value parameter is accepted but this parameter does not
      accept wildcard. A complete URL should be defined.


    Web Application Client Response Introduced

      Use the WebAppClientResponse ACO parameter to implement the
      functionality of the web application client, while maintaining
      SiteMinder security.


      Specifies the protected URI to which the web application client is
      making requests. If the URI of a request matches this value,
      SiteMinder identifies the request as originating from the web
      application client. The resource can contain a wildcard (*) for
      prefix and suffix matching.

      Default: No value: if this value is omitted, all resources that the
      Web Agent is protecting apply to the parameter.

      Value: Regular expressions are not supported.

      Example: Resource=/web20/dir/*
      Example: Resource=/web20/dir/*.xml