Spaces for line breaks when inserting client cert into header

Question

Question:&nbsp;
&nbsp;When using the following rule to insert a client certificate into the http header, it puts spaces where line breaks occur within the certificate.&nbsp;
&nbsp;Is it possible to prevent this have have it inserted as one continuous stream of characters?&nbsp;
&nbsp;Rule:&nbsp;
&nbsp;when CLIENTSSL_CLIENTCERT {  
&nbsp;set ssl_cert [SSL::cert 0]  
&nbsp;session add ssl [SSL::sessionid] $ssl_cert 180
&nbsp;}
&nbsp;when HTTP_REQUEST {  
&nbsp;set client_cert [session lookup ssl [SSL::sessionid]]  
&nbsp;HTTP::header insert SSLClientCert [X509::whole $client_cert]
&nbsp;}&nbsp;&nbsp;
&nbsp;Unable to paste the output as this window formats it. But when viewed within the packet itself, wherever a line break occurs in the certificate, it is replaced with a space.&nbsp;
&nbsp;Causing end system that reads the information to fail because of the spaces. It is expecting a stream with no breaks.

dimka___104021 · Answer

Hi,&nbsp;&nbsp;
&nbsp;I use something like this:&nbsp;
&nbsp;when HTTP_REQUEST { 
&nbsp;set client_cert [session lookup ssl [SSL::sessionid]] 
&nbsp;HTTP::header insert SSLClientCert [ join [string trim [string map { "-----BEGIN CERTIFICATE-----" "" "-----END CERTIFICATE-----" ""} [X509::whole $client_cert] ]] "" ]
&nbsp;}&nbsp;

Forum Discussion

Spaces for line breaks when inserting client cert into header

Recent Discussions

XC Bot defense question

Big-IP not recognized by Big-IQ

UCS backup not loading Big IP DNS pool

Application only need to access from 2 uris

In Radius auth, how to allow second attempt of token input when the first input is incorrect?

Related Content

Disk space full

Security Headers Insertion

EC certificate breaks remote desktop

APM custom address space by client IP?

Integrate BIG-IP with AWS CloudWAN Service Insertion

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS