Forum Discussion

Nimbostratus

17 years ago

Need iRule to enable "secure" attribute on cookies

ASP.NET application is sending 4 cookies to the client and they are not marked "secure" (i.e., the cookies don't have the attribute that tells the client PC to send the cookies only over an SSL connec...

Cirrostratus

17 years ago

Something like this?

 
 when HTTP_RESPONSE { 
    foreach cookiename [list ASP.NET_SessionId .ASPXAUTH VenueDLA .ASPXCOOKIEAUTH-VenueRRDAdmin] { 
       HTTP::cookie secure $cookiename enable; 
    } 
 }

Aaron

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Need iRule to enable "secure" attribute on cookies

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

Changes to DO and AS3 GitHub - no longer monitored

SSL Forward Proxy, iRules and Client Hello

monitor/healthcheck issue with envoy gateway

Recommendation for Adv. Lab

How to Verify config before loading to F5

Related Content

F5 Partner Solution Showcase - "ImmuniWeb - Application Security Testing and Remediation"

Add SameSite attribute to APM Cookies

Lightboard Lessons: HTTP Cookie SameSite Attribute

Set the SameSite Attribute for LTM Persistence Cookies

Set the SameSite Cookie Attribute for Web Application and BIG-IP Module Cookies

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS