Hello,
Add this code snippet to the TOTP page template (or any other template):
<% java.lang.System.err.println(JSON.stringify(templateContext.macros).replace(/@/g,"")); %>
It will output the available macros (and their values) to the Runtime "messages.log".
Cheers... Jon.
------------------------------
Jon Harry
Consulting IT Security Specialist
IBM
------------------------------
Original Message:
Sent: Tue October 22, 2019 03:02 AM
From: Jahanzaib Sarwar
Subject: ISAM: Relative URI for pkmslogout includes /mga junction
Thank you Jon,
I have used /../pkmslogout as an immediate solution and it is working..
Also, can you confirm that the %USERNAME% macro is available on the TOTP login page or not? Because I am trying to display the username but the macro is displayed as it is (coming out unpopulated)..
Regards,
------------------------------
Jahanzaib Sarwar
Original Message:
Sent: Tue October 22, 2019 02:51 AM
From: Jon Harry
Subject: ISAM: Relative URI for pkmslogout includes /mga junction
Hello,
The simplest approach is probably to make your link for /../pkmslogout or (if that's not allowed) ../../../pkmslogout.
Other approaches would be to use JavaScript in link to build URL so that filtering doesn't see it.
Finally, you could create an HTTP transformation to match on */pkmslogout in request URL and rewrite to /pkmslogout.
Jon.
------------------------------
Jon Harry
Consulting IT Security Specialist
IBM
Original Message:
Sent: Tue October 22, 2019 01:46 AM
From: Jahanzaib Sarwar
Subject: ISAM: Relative URI for pkmslogout includes /mga junction
Hello all,
I have included a button for logout in the default TOTP Login page and called the /pkmslogout (as a relative path) on the href tag.
But this actually redirects it to /mga/pkmslogout. It is including the base junction as well in the relative path.
How to ignore the base junction being included in the path so that only /pkmslogout can be called?
Regards,
------------------------------
Jahanzaib Sarwar
------------------------------