header-data

Edit online

Use the header-data stanza entry to add HTTP headers to the request that WebSEAL sends to junctioned applications.

Syntax

<header-data> = [+]<header-name>

Description

Controls the addition of HTTP headers into the request that is passed to junctioned applications.

To include the same <header-data> in different headers, specify multiple entries with the same <header-data> value.

Options

<header-data>
The type of data that WebSEAL adds to the <header-name> header of the request. The valid values for this entry are as follows:
server-name
The Verify Identity Access authorization server name for the WebSEAL server. This name is the name of the authorization API administration server that is used in the server task commands.
client-ip-v4
The IPv4 address of the client of this request.
client-ip-v6
The IPv6 address of the client of this request.
client-port
The port that is used by the client of this request. This port is the client source port and not the destination port.
host-name
The host name of the WebSEAL server. WebSEAL obtains this host name from the web-host-name configuration entry in the [server] stanza if specified. Otherwise, WebSEAL returns the host name of the server itself.
junction-name
The junction name. It is the junction point for a standard junction (including the leading '/'), or the virtual host label for a virtual host junction.
httphdr{<name>}
An HTTP header from the request as specified by the <name> field. If the HTTP header is not found in the request, WebSEAL uses the value in the [server] tag-value-missing-attr-tag configuration entry as the value for the header.
text{<value>}
The literal value which is to be assigned to the specified header.
credattr{<name>}
An attribute from the user’s credential, as specified by the <name> field. If the specified attribute does not exist, the value contained within the [server] tag-value-missing-attr-tag configuration entry will be used as the value for the header. If the specified attribute is a multi-valued attribute the values will be added to a single HTTP header, with each value separated by a comma.
<header-name>
The name of the HTTP header that holds the data. The <header-name> can be prefixed with the plus (+) character if you want to append to any existing header instead of overwriting the existing header. Valid strings are limited to the following characters: A-Z, a-z, 0–9, hyphen ( - ), or underscore ( _ ).

Usage

This stanza entry is optional.

Default value

server-name = iv_server_name

Example

server-name = iv_server_name

In this example, WebSEAL passes the following header and value to the junction if the WebSEAL instance is default-webseald-diamond.example.com:

iv_server_name:default-webseald-diamond.example.com

Other example entries:

client-ip-v4 = +X-Forwarded-For
client-ip-v4 = X-Header
httphdr{host} = X-Forwarded-Host
host-name = X-Forwarded-Server
text{green} = X-Deployment-Status
credattr{AZN_CRED_PRINCIPAL_NAME} = X-Principal