For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Blue_whale's avatar
Blue_whale
Icon for Cirrocumulus rankCirrocumulus
May 30, 2019

Irule - How this Secure Cookie Irule works ?

Can some one explain how this SECURE_COOKIE Irule works .     ltm rule SECURE_COOKIE {   when HTTP_RESPONSE_RELEASE {  set unsafe_cookie_headers [HTTP::header values "Set-Cookie"]  HTTP::header...
application delivery
BIG-IP
iRules
Dario_Garrido's avatar
Dario_Garrido
Icon for Noctilucent rankNoctilucent
May 30, 2019
when HTTP_RESPONSE_RELEASE {
	# Get all values of Set-Cookie headers
	set unsafe_cookie_headers [HTTP::header values "Set-Cookie"]
	# Remove the current unsafe Set-Cookie header
	HTTP::header remove "Set-Cookie"
	foreach set_cookie_header $unsafe_cookie_headers {
		# Insert a new Set-Cookie header with '<value>; Secure' for each one (to securize)
		HTTP::header insert "Set-Cookie" "${set_cookie_header}; Secure"
	}
}
Blue_whale's avatar
Blue_whale
Icon for Cirrocumulus rankCirrocumulus
May 31, 2019

Dario thank you ,

 

what do you mean by  unsafe communication ?