F5 is upgrading its customer support chat feature on My.F5.com. Chat support will be unavailable from 6am-10am PST on 1/20/26. Refer to K000159584 for details.

Forum Discussion

gavin84_31753's avatar
gavin84_31753
Icon for Nimbostratus rankNimbostratus
Dec 07, 2012

Secure and HTTP attribute setting on BIGIP cookie in Persistence Profile

So I'm in need of an IRULE to set HTTP Only and secure flags on the cookie that we are using in our cookie persistence profile, call it BIGIP. I did some research and found this one on dev central, ...
application delivery
dev
devops
iRules
Kevin_Stewart's avatar
Kevin_Stewart
Icon for Employee rankEmployee
Dec 08, 2012
Taking inspiration from the following thread (https://devcentral.f5.com/community/group/aft/1178831/asg/52), here's a simple iRule that should get you in the right direction. 


when RULE_INIT {
    set static::DEBUG 1
}
when SERVER_CONNECTED {
     Save the name of the currently connected pool (remove "/Common/" for v11 systems)
    set pool_name [findstr [LB::server pool] "/Common/" 8]
    if { $static::DEBUG } { log local0. "pool = $pool_name" }
}
when HTTP_RESPONSE {
     Check if the response contains the persistence cookie
    if { [HTTP::cookie BIGipServer${pool_name}] ne "" }{
        if { $static::DEBUG } { log local0. "BIGIP cookie exists: [HTTP::cookie BIGipServer${pool_name}]" }
         Replace the last Set-Cookie header value with the same value with HttpOnly and secure appended
        HTTP::header replace Set-Cookie "[HTTP::header Set-Cookie]; httponly; secure"
    }
}