Forum Discussion

Nimbostratus

Apr 20, 2017

CSRF javascript is not injected properly

Dear all,

I have configured the csrf protection in my policy but it seems that the javascript injected only if i refresh the page. In case there is no any uri in csrf policy, the javascript is injected in all uris? Is the csrf token stored in a TS cookie?

Thank you in advance.!

No RepliesBe the first to reply

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

CSRF javascript is not injected properly

Jeff - May 2026 Featured F5er

AppWorld Berlin 2026 – iRules Contest Winning Results

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

Recent Discussions

certitcate error

Layered ASM for APM login page protection

migrate from serie I to R. Cluster LTM-GTM

APM URL encoding Hardening?

Trial License for F5 virtual edition in eve-ng

Related Content

LLM Prompt Injection Detection & Enforcement

Logging/Blocking possible prompt injection

Javascript injecting systems effect on web application end users - a scenario review

AppDynamics EUM JavaScript Injection for Selective URLs

WAF evasion techniques for Command Injection

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS