For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Patricio_quirog's avatar
Patricio_quirog
Icon for Altocumulus rankAltocumulus
Oct 25, 2022

Apache origin and header conversion to iRules

I need to take this an Irule f5 can you help me with this please <IfModule mod_headers.c> Header edit Set-Cookie ^(.*)$ $1;SameSite=None;Secure SetEnvIf Origin "^http(s)?://(.+\.)?tgr\.cl$" Acces...
apache
application delivery
iRules
JRahm's avatar
JRahm
Icon for Admin rankAdmin
Nov 02, 2022

Hi Patricio_quirog, I'm no expert on apache configs...but I think this duplicates the logic. Test for sure before rolling anything to a production environment:

when HTTP_REQUEST {
  set host [HTTP::host]
  if { $host ends_with “tgr.cl” } {
    set origin_match 1
  } else { ## what to do if it does not match? }
}
when HTTP_RESPONSE {
  if { [info exists origin_match] } {
    HTTP::header remove Access-Control-Allow-Origin
    HTTP::header remove Access-Control-Allow-Credentials
    HTTP::header insert Access-Control-Allow-Origin $host
    HTTP::header insert Access-Control-Allow-Credentials true
  }
}
Patricio_quirog's avatar
Patricio_quirog
Icon for Altocumulus rankAltocumulus
Nov 03, 2022

thanks and  for sure put into a test enviroment first.