Forum Discussion

Altostratus

May 12, 2022

ASM/WAF policy - Parameter value type was determined to be "XML value" but really it is "HTML"

Hi, hoping someone can help with this issue. F5 WAF suggested that the parameter "text" should be "XML value". I agreed and and I'm using the default XML content profile. However the actual value l...

Nimbostratus

Aug 04, 2023

You could define /aa/bb on the allow URLs and add to it a Header Based Content Profile:

Request Header name: Content-Type

Request Header Value:* application/x-www-form-urlencoded *

Request Body Handling: Form Data

Profile Name: N/A

Then you can create a parameter text and select the parameter value type to XML value. Then use the XML default content profile

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

Forum Discussion

ASM/WAF policy - Parameter value type was determined to be "XML value" but really it is "HTML"

Recent Discussions

Should config via cli rather than gui?

Management IP F5 cant be accessed

ASD

Big-IP VE edition for MacBook M4 Chip

301 redirect and waf policy log problem

Related Content

exclude HTTP::header value Content-Type] equals "text/xml; charset=utf-8" from SSL redirect

Using BIG-IQ to Determine Differences Between Advanced WAF Policies

Extracting dynamic parameter values from a "Jason" formatted response.

ASM stripping double quotes from cookie values post v14?

determine HTTP or HTTPS

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS