Forum Discussion

Cirrus

Sep 30, 2015

Do I need to check HTTP::header exists before checking value?

I feel like this is a simple question, but I can't seem to find a definitive answer... To check the value of a particular HTTP header, I can do this: if { [HTTP::header Origin] ends_with "...

Nimbostratus

Sep 30, 2015

Hello,

Use the first sample as it appears to be the most efficient and performance-friendly. If the header "Origin" is not found in the client's request, the block of code after the conditional statement will not be processed. There will be no TCL errors or any issues due.

Personally, I would use

if { [HTTP::header value "Origin"] ends_with "example.com" }

as the conditional statement, just for clarity reasons.

Recent Discussions

Under Attack? F5 Will Help You.
Contacting F5 Support?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Do I need to check HTTP::header exists before checking value?

AppWorld Berlin 2026 – iRules Contest Winning Results

One Quick Step to Make your website AI-Agent/MCP Ready with an iRule

IPv8 Would Fix My Routing Tables. It Will Never Ship.

Recent Discussions

Errors with AS3 3.56.0 with F5 17.5.1.6

F5 ASM/AWAF – violations logged but no learning suggestions generated

F5 VELOS Backplane Inter-Tenants Communication

migrate from serie I to R. Cluster LTM-GTM

Best Practice guide for enabling Attack signature In BIG-IP ASM

Related Content

Log Http Headers

(HTTP) Redirection via Arbitrary Host Header

F5 XC Distributed Cloud HTTP Header/Cookie manipulations and using the client ip/user headers

F5 NGINX HTTP Request Header Rules: What’s Permitted and What’s Not

BIG-IP security hardening and compliance checks

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS