Forum Discussion

Nimbostratus

Aug 26, 2013

How to properly insert HttpOnly and Secure cookie directives?

My load balancer has an iRule that adds the HttpOnly and Secure cookie directives. The rules is adding the directives multiple times, and in the incorrect places. How can I get the directives added c...

Employee

Sep 04, 2013

HTTP::header insert "Set-Cookie" "${set_cookie_header}; Secure; HttpOnly"

shouldn't you check whether secure or httponly exists before inserting?

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

How to properly insert HttpOnly and Secure cookie directives?

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

How can I get started with iCall

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Related Content

F5 Distributed Cloud Kubernetes Integration: Securing Services with Direct Pod Connectivity

Automating F5 Licensing - without direct internet access

Getting Started with iRules: Directing Traffic

Sync-failover group doesn't sync properly

Is it possible to properly log protobuf?

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS