JSON elements for login page

Question

Hello team! I need to configure login page for brute-force protection of application.

It was easy for a web browser because the HTML form is easy to configure and works well.

But the authentication type for the mobile app is JSON / AJAX. I'm facing a problem: I'm unable to select the correct values for the username and password JSON elements from the entire server response. Should I use <map>, <string> and other tags in these fields, or should I only use keywords? I only found one example using JSON / AJAX authentication https://clouddocs.f5.com/training/community/waf/html/waf241/module4-login-protect/lab1/lab1.html, without any tags, but this example doesn't work in our environment.

Thanks!

maksym · Answer

For example, after trying to sign in from a mobile app with incorrect credentials, ASM received a large request. I found the password I entered, in the following context:

<string>password</string><string>value</string><string>Igxiguodufjffuu</string>

Which part of this line should we insert into the Password field? Same question about the the login field.

Forum Discussion

JSON elements for login page

1 Reply

F5 Academy at AppWorld 2026

Introducing the F5 AI Assistant for BIG-IP

Recent Discussions

Connection Rest f5

Kubernetes cert-manager + LetsEncrypt + F5

The GSLB pool is providing an incorrect IP to end users

Unable to ping from some self ip on Velos

Not seeing the latest F5OS-A when running Journeys

Related Content

Json parsing with iRules

IPFIX Elements

Simple iRulesLX JSON rewrite

JSON Web Key Set Endpoint

F5 Network Map to Json with Python

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS