Forum Discussion

Nimbostratus

Sep 01, 2006

Prevent users access directly to uri from saved favorite

I wonder if someone can help me out, I'm kinda stumple on this and doesn't know where to start. I have a website that is behind the Big IP v. 4.5.10. Let say the website is https://www.myco...

Historic F5 Account

Sep 01, 2006

I think the best solution might be to set a session cookie, and redirect on requests for non-root URI's if they don't have it:

when HTTP_REQUEST {
  if { ([string length [HTTP::uri]] > 1) }{
    if { not ([HTTP::cookie exists "SessionCookie"]) }{
      HTTP::redirect "http://www.mycompany.com/"
    }
  }
} 
when HTTP_RESPONSE {
  HTTP::cookie insert name "SessionCookie" value [expr { int(1000 * rand()) }]
}

HTH

/deb

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Prevent users access directly to uri from saved favorite

AppWorld Berlin iRules Contest!

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

Recent Discussions

Changes to DO and AS3 GitHub - no longer monitored

SSL Forward Proxy, iRules and Client Hello

monitor/healthcheck issue with envoy gateway

Recommendation for Adv. Lab

How to Verify config before loading to F5

Related Content

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

Operationlizing Online Fraud Detection, Prevention, and Response

F5 ASM/AWAF Preventing unauthorized users accessing admin path using iRule script

Guarding Large Language Models: Advanced Approaches to Preventing Model Theft

My Three Favorite Security Podcasts

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS