Forum Discussion

Nimbostratus

May 14, 2010

Filter certain parts out from HTTP::header or HTTP::uri?

Our developers unfortunately love to have long SAMLResponse as part of the URI, which could also show up via referrer. I currently got an iRule I use to send a NCSA combined weblog to a syslog server ...

Cirrostratus

May 14, 2010

Hi,

You can use an iRule like the one in the post below to do this. The example was just removing the parameter from the URI, but you could use the same logic to sanitize the Referer header. Note that this wouldn't prevent the client from seeing the value--the app wouldn't see (or log) it.

Removing a parameter from a query

http://devcentral.f5.com/Community/GroupDetails/tabid/1082223/asg/50/afv/topic/aft/1172257/aff/5/showtab/groupforums/Default.aspx

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Filter certain parts out from HTTP::header or HTTP::uri?

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

F5 XC 503 upstream_reset_before_response_started{protocol_error}

CVE mitigation on F5 XC vs classic F5 WAF

F5 mssql health monitor failing

Could not communicate with the system. Try to reload page.

UCS Encryption Question

Related Content

(HTTP) Redirection via Arbitrary Host Header

Log Http Headers

APM HTTP Connector request and HTTP Headers

Re: F5 XC Distributed Cloud HTTP Header manipulations and matching of the client ip/user HTTP header

F5 NGINX HTTP Request Header Rules: What’s Permitted and What’s Not

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS