Forum Discussion

Alfonso_Santia2's avatar
Alfonso_Santia2
Icon for Altostratus rankAltostratus
Jan 16, 2021

Block access to apps by browser. Allow only iPhone or Android accesss

Customer has an application that they want access only through the mobile device app. They have recently found that the application can be accessed through any browser. We have configured the foll...
android
application delivery
iphone
LTM
Daniel_Wolf's avatar
Daniel_Wolf
Icon for MVP rankMVP
Jan 18, 2021

Hi Alfonso,

this iRule should work. However I strongly discourage the use of it. User-Agent Headers can be forged easily. Anyone who knows how to access Developer Tools in a browser can change his User-Agent string to whatever they want.

when HTTP_REQUEST {
    if {([string tolower [HTTP::header "User-Agent"]] contains "iphone") || ([string tolower [HTTP::header "User-Agent"]] contains "android") } {
        return
    } else {
        reject
    }
}