Forum Discussion

Nimbostratus

Jul 11, 2025

irule for redirect and header injection

we have an application going through APM with AD authentication. A irule is applied to redirect it directly to backend server and is functioning. I need to insert "X-Authenticated-User" "true" to the...

application delivery

Injeyan_Kostas

Nacreous

Jul 11, 2025

You cannot force client to use an HTTP Header in redirect.

But it seems like you try to achieve a type of sso, like if you are authenticated to APM you are free to access backend app.

In this case why don't you just protect backend app with the same APM policy and inject the header when forwarding traffic to the backend server?

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

irule for redirect and header injection

F5 Academy at AppWorld 2026

Aswin MK - November 2025 Featured Member

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

CVE mitigation on F5 XC vs classic F5 WAF

Could not communicate with the system. Try to reload page.

F5 XC 503 upstream_reset_before_response_started{protocol_error}

UCS Encryption Question

BIG-IP VE: 40G Throughput from 4x10G physical NICs

Related Content

(HTTP) Redirection via Arbitrary Host Header

Host header injection iRule

WAF evasion techniques for Command Injection

Header injection rule

F5 HTTPS Redirect 2025

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS