iRule for SameSite Strict attribute

Question

Hi Folks,I need iRule for setting the samesite = strict attribute and call it in virtual server. I have tried available article but it is not working. SameSite is reflecting as None from the browser developer tool. &nbsp;Here is my iRule.&nbsp;when HTTP_RESPONSE_RELEASE {&nbsp;set samesite_security "strict"&nbsp;&nbsp;set cookie_names [HTTP::cookie names]&nbsp;	foreach a_cookie $cookie_names {		# Remove any prior instances of SameSite attributes		HTTP::cookie attribute $a_cookie remove {samesite}&nbsp;				# Insert a new SameSite attribute		HTTP::cookie attribute $a_cookie insert {samesite} $samesite_security&nbsp;}	if {$cookie_debug}{log local0. "[IP::client_addr]:[TCP::client_port]: Set-Cookie header values: [HTTP::header values {Set-Cookie}]"}}&nbsp;&nbsp;&nbsp;

nikoolayy1 · Answer

Have you checked this article as it mentons a bug:

https://support.f5.com/csp/article/K14225515

Also search the bugtracker for bugs for samesite :

https://support.f5.com/csp/bug-tracker?sf189923893=1

Forum Discussion

iRule for SameSite Strict attribute

1 Reply

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

iRule causing requests to be duplicated (sometimes)

SSL Bridging and FQDN rewrite Policy

How can I get started with iCall

Checking for X-Forwarded-For against an Address Data-Group

After upgrading from PeopleTools 8.59.11 to 8.61.11 F5 APM is not rewriting the internal URLs

Related Content

Add SameSite attribute to APM Cookies

Lightboard Lessons: HTTP Cookie SameSite Attribute

Set the SameSite Attribute for LTM Persistence Cookies

Strict header Insertion

Set the SameSite Cookie Attribute for Web Application and BIG-IP Module Cookies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS