Forum Discussion

Nimbostratus

Dec 02, 2008

HTTP::cookie and decryption

I'm trying to avoid authenticating each and every get / post in the HTTP request using cookies, I would be grateful if anybody could explain to me whats wrong here The domain is correct, the cl...

Nimbostratus

Dec 03, 2008

If I use the AES::decrypt everything works fine but I understand from the wiki that the recommended method is HTTP::cookie decrypt

set ::key [AES::key 128]

if {[HTTP::cookie exists $ckname]} {

set encrypted [HTTP::cookie $ckname]

log "cookie sent by client is [HTTP::cookie $ckname]"

set decrypted [AES::decrypt $::key [b64decode $encrypted]]

log "decrypted cookie is $decrypted"

if {$decrypted eq $ckvalue} {

set forceauth 0

}

when HTTP_RESPONSE {

if {$authinsck eq 1} {

set encrypted [b64encode [AES::encrypt $::key $ckvalue]]

HTTP::cookie insert name "$ckname" value $encrypted domain $ckdomain

log "cookie sent by bigip is $encrypted"

}

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

HTTP::cookie and decryption

The New F5 Certified BIG-IP Administrator Certification Exams Now Live

F5 Academies Are Back – And We’re Coming to a City Near You

Recent Discussions

Azure Virtual Machine Scale Set (VMSS) with F5 LTM

Change severity for sod log messages

Rewrite content in XML schema file.

F5 APM Check Domain Membership

Question regarding F5 Viprion Configuration Migration to VE.

Related Content

Decrypt, Encrypt, Decrypt, Encrypt, Encrypt....

Decrypting BIG-IP Packet Captures without iRules

Decrypting BIG-IP Packet Captures Automatically

F5 Distributed Cloud - Regional Decryption with Virtual Sites

Decrypting TLS traffic on BIG-IP

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS