Test a sample cookie application

Testing a cookie application involves validating application cookies and overall testing.
Simulation allows you to validate cookie contents before testing with the back end protected web resource.

Configure application for simulation testing

This section covers testing using header based simulation and is only required if testing passing of values using application headers.

To configure an application for header simulation testing:

  1. Navigate to the Access Gateway Admin UI console
  2. From the Topology tab or the Applications tab, open the application.
  3. Select the Settings pane.
  4. Expand the Essentials sub tab.
  5. Note the current value of Protected Web Resource.
  6. Change the Protected Web Resource field to:
    https://header.service.spgwWhen running a test, results in the display of information related to the header, cookie, session, and other information.

    Copy and save the original backend Protected Web Resource value.

  7. Expand the Advanced sub-tab.
  8. Enable Debug mode.

    When enabling Debug mode, ensure that the download log has also been set to level debug. Application debug events aren't visible in downloadable logs unless download logs are also configured to emit Debug level log events. See Manage log verbosity

  9. Click Done.
  10. When debugging header based applications, consider testing attributes with static known good values. For example, change dynamic IDP based fields to static with known good values.

    When debugging policy based applications, test with no policy or open policy first.

Configure Access Gateway for debug and monitoring

The Access Gateway Management console can be used to provide a running display of all system log messages. In this optional section we enable debug and monitor Access Gateway using this functionality.

  1. Open a terminal and using SSH connect to the Access Gateway Management console for example.
    ssh oag-mgmt@gw-admin.<domain.tld>
    ssh oag-mgmt@gw-admin.mysite.myco.com
  2. Navigate to the log monitoring page:
    1. Enter 4 - Monitoring.
    2. Enter 2 - Enable Debug.
    3. Enter 1 - Monitor logs.

    The a running display of all log messages will begin to display. Return to the Access Gateway Admin UI console console and exercise the application being examined.
    See command line Access Gateway Management console/monitoring for a complete list of all monitoring and related commands.

  3. Enter [ctrl][c] to exit the log display.

The debug logging level rapidly generates log message. Be sure to always disable debug logging when you have finished examining logging.
Failure to disable debug logging could result in rapid log file growth and out of disk errors.

Completed application testing

Completed application testing as required.

  1. The Applications tab, on the row containing the application, click Goto application > SP Initiated.
  2. Repeat testing using Goto application > IDP Initiated.
  3. Repeat testing using each specialized policy URI.
  4. If required, disable debugging.

Completed application testing as required.

Disable debug

If displaying debug statements at the command line:

  1. Return to the Access Gateway Management console.
  2. Enter [ctrl][c] to exit the log display.
  3. Enter 3 - Disable debug.
  4. Exit the command line console

If application debug is enabled:

  1. Return to the Access Gateway Admin UI console
  2. Navigate to the application being tested
  3. Expand the Setting sub tab.
  4. Expand the Essentials sub tab.
  5. Return the Protected Web Resource field back to its original value.
  6. Expand the Advanced sub tab.
  7. Set the Debug toggle to Disable.
  8. Save your changes.