Forum Discussion

Cirrocumulus

Jun 16, 2021

iRule to secure flag on specific URL (Multiple URL in one VS)

Hi We know that F5 can add secure attr in cookie from irule HTTP_RESPONSE <https://support.f5.com/csp/article/K11324> but this is apply to all website in virtual server!! We have many U...

Nacreous

Jun 16, 2021

You may try below.

when HTTP_REQUEST {
set sflag 1
if { [class match [HTTP::host] equals secure-flag-domains] } { set sflag 0 }
return
}
 
when HTTP_RESPONSE {
    if { $sflag == 0} { 
    foreach mycookie [HTTP::cookie names] {
    HTTP::cookie secure $mycookie enable
   }
  }
}

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

iRule to secure flag on specific URL (Multiple URL in one VS)

Security Best Practices for F5 Products

F5 AppWorld 2026 Registration - early bird pricing.

Kostas Injeyan - October 2025 Featured Member

Recent Discussions

SSO login for APM Profiles

Virtual Server Configuration requirements for ISO 8583 traffic (Single persistent TCP session)

threat hunting guide

Webtop which has VNC for macos users

Floating IP responds from wrong VLAN/trunk

Related Content

APM-Specific Features for Securing Your Website

Quarterly Security Notification October 2025

Positive Security vs. Negative Security: A Comparison Using F5's Security Portfolio

Securing MCP Servers with F5 Distributed Cloud WAF

Automating F5 Application Delivery and Security Platform Deployments

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS