Create link translations for web applications in Secure Access Cloud (SAC), when not using custom domains, using Chrome browser extension Requestly.
Note: Using custom domains will make the below procedure redundant. Custom domain is the preferred and recommended method of deploying new web applications.
Secure Access Cloud
For SAML based applications, the admin can authorize users to access corporate resources behind the SAC using the existing SSO integration, however, in many cases, the Identity Provider (IdP) will redirect the user to a specific 'Reply URL' which represents the application's address.
The challenge is that in the IdP only a single application address can be specified, which can either be the SAC external address, or the original address of the application.
In order to support a 'side by side' scenario where some users are accessing via SAC, while others are accessing using the previous method (and original URL) an address translation should occur modifying the Reply URL provided by the IdP to the SAC external address.
Requestly is a Google Chrome browser extension which can translate requests from the URL redirected to by the IdP (original URL) to the SAC URL (containing the Luminate suffix), thus allowing the side-by-side testing of SAML based applications via SAC for a specific set of users, while not impacting the other users using the application until a full roll-out of SAC is performed.
Once you are ready to publish the application for all of your users, simply create a new application with a custom domain and disable the rule in Requestly.
Create a web application with a valid, resolvable internal IP.
Export the Requestly rule:
Edit the application and find the Host Origin replacement section:
Click Generate and view, then download the file.
Install chrome extension. Notice the icon in your taskbar:
Launch the app and upload rule you downloaded in the previous step:
Once the rule is in place, the source URL will automatically be replaced with the destination.
Subscribing will provide email updates when this Article is updated. Login is required.