Macro support for automatic redirection

Macro support for automatic redirection

Automatic redirection provides support for a subset of the macros provided by WebSEAL to customize the static redirect URL. Macros allow dynamic substitution of information from WebSEAL.
Macros are specified as an argument in the query string of the redirection URL. Specific characters in the macro values are URI-encoded (see Encoding of macro contents).
Valid WebSEAL macros for use in automatic redirection are:

Macro Description

AUTHNLEVEL Authentication level required by authentication strength policy (step-up).

HOSTNAME Fully qualified host name.

PROTOCOL Client connection protocol used. Can be HTTP or HTTPS.

URL The URL requested by the client.

USERNAME The name of the logged in user. The value "unauthenticated" is used for users who are not logged in. (See also Customization of login forms for reauthentication.)

HTTPHDR{name} Used to include the contents of a specified HTTP header. If the specified HTTP header does not exist within the request, the macro contains the text: Unknown.
For example, the macro name to include the "Host" HTTP header is HTTPHDR{Host}.

CREDATTR{name} Used to include the contents of a specified attribute in the user credential. If the specified credential attribute does not exist in the request, the macro contains the text: 'Unknown'.
For example, use the following macro name to include the tagvalue_session_index attribute, which contains the secret token for the session: CREDATTR{tagvalue_session_index}.

Encoding of macro contents

Macro content length considerations

Parent topic: Automatic redirection after authentication

Macro	Description
AUTHNLEVEL	Authentication level required by authentication strength policy (step-up).
HOSTNAME	Fully qualified host name.
PROTOCOL	Client connection protocol used. Can be HTTP or HTTPS.
URL	The URL requested by the client.
USERNAME	The name of the logged in user. The value "unauthenticated" is used for users who are not logged in. (See also Customization of login forms for reauthentication.)
HTTPHDR{name}	Used to include the contents of a specified HTTP header. If the specified HTTP header does not exist within the request, the macro contains the text: Unknown. For example, the macro name to include the "Host" HTTP header is HTTPHDR{Host}.
CREDATTR{name}	Used to include the contents of a specified attribute in the user credential. If the specified credential attribute does not exist in the request, the macro contains the text: 'Unknown'. For example, use the following macro name to include the tagvalue_session_index attribute, which contains the secret token for the session: CREDATTR{tagvalue_session_index}.