Mar 27, 2026 - For details about updated CVE-2025-53521 (BIG-IP APM vulnerability), refer to K000156741.

Forum Discussion

Steve_Brown_882's avatar
Steve_Brown_882
Historic F5 Account
Feb 03, 2012

Rewriting cookies

Hey Guys,   I am working on an irule to rewrite cookies on a site with httponly and secure flags set but getting an error on the http only flag sometimes. The rule is below...and this is v11.1   ...
application delivery
dev
devops
irules
nitass's avatar
nitass
Icon for Employee rankEmployee
Feb 03, 2012
i got the same error. anyway, may we try something like this? 

root@ve1100(Active)(/Common)(tmos) show sys version

Sys::Version
Main Package
  Product  BIG-IP
  Version  11.1.0
  Build    1943.0
  Edition  Final
  Date     Sun Nov 20 18:27:50 PST 2011

root@ve1100(Active)(/Common)(tmos) list ltm virtual bar
ltm virtual bar {
    destination 172.28.19.252:80
    ip-protocol tcp
    mask 255.255.255.255
    pool foo
    profiles {
        http { }
        tcp { }
    }
    rules {
        myrule
    }
    snat automap
    vlans-disabled
}
root@ve1100(Active)(/Common)(tmos) list ltm pool foo
ltm pool foo {
    members {
        200.200.200.101:80 {
            address 200.200.200.101
        }
    }
}
root@ve1100(Active)(/Common)(tmos) list ltm rule myrule
ltm rule myrule {
    when HTTP_RESPONSE {
   set cookie_names [HTTP::cookie names]

   if { $cookie_names ne "" } {
      foreach cookie $cookie_names {
         set cookie_value [HTTP::cookie $cookie]
                 HTTP::cookie remove $cookie
         HTTP::cookie insert name $cookie value $cookie_value path / version 1
         HTTP::cookie httponly $cookie enable
         HTTP::cookie secure $cookie enable
      }
   }
}
}

[root@ve1100:Active] config  curl -I http://200.200.200.101
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2012 01:05:07 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 11 Nov 2011 14:48:14 GMT
ETag: "4183e4-3e-9c564780"
Accept-Ranges: bytes
Content-Length: 62
Set-Cookie: AAA=1111; path=/
Set-Cookie: BBB=2222; path=/
Set-Cookie: CCC=1234; path=/
Content-Type: text/html; charset=UTF-8

[root@ve1100:Active] config  curl -I http://172.28.19.252
HTTP/1.1 200 OK
Date: Sat, 04 Feb 2012 01:05:14 GMT
Server: Apache/2.2.3 (CentOS)
Last-Modified: Fri, 11 Nov 2011 14:48:14 GMT
ETag: "4183e4-3e-9c564780"
Accept-Ranges: bytes
Content-Length: 62
Content-Type: text/html; charset=UTF-8
Set-Cookie: AAA=1111;Secure;HttpOnly;Path=/;Version=1;
Set-Cookie: BBB=2222;Secure;HttpOnly;Path=/;Version=1;
Set-Cookie: CCC=1234;Secure;HttpOnly;Path=/;Version=1;