Forum Discussion

Nimbostratus

Jul 24, 2014

HTTP::cookie and setting flags

I'm struggling with writing some irule logic which sets the httponly and secure flags on only the bigipserver cookies inserted by the F5 when using cookie session persistence, while not affecting any...

Nimbostratus

Jul 24, 2014

We have an ASM module, but we've not deployed it yet.

After spending some time beating on it a bit more, I've managed to sort it out:

when HTTP_RESPONSE {
   set ck [HTTP::header values "Set-Cookie"]
   foreach acookie $ck {
      if {$acookie starts_with "BIGipServer"} {
         HTTP::header replace "Set-Cookie" "${acookie}; HttpOnly"
      }
   }
}

Forum Discussion

HTTP::cookie and setting flags

Recent Discussions

Citrix XenServer Big-IP Upgrade help

Hi All, We have viprion 4300 with 4450 blades with 6 blades all blades having same configuration

BWC iRule

Can iRule be used to perform exception of IPI category based on Geolocation

help irules for compatibilty

Related Content

iRule to take cookie from HTTP Response into HTTP Request via table

DevCentral Connects hosts Capture the Flag!

Adding http only / secure flags to TS cookies per policy

Change cookie domain in HTTP::respond

Lightboard Lessons: HTTP Cookie SameSite Attribute