For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Yozzer's avatar
Yozzer
Icon for Nimbostratus rankNimbostratus
Mar 17, 2012

sub domain session cookies

Just a bit of background on what i hope an irule can help me to achieve.     I want to send SAML tokens to a sub domain and the resulting session cookie that’s returned from a successful login n...
application delivery
dev
devops
iRules
Yozzer's avatar
Yozzer
Icon for Nimbostratus rankNimbostratus
Mar 17, 2012
Hi

 

 

I found the following irule on the forum to set all cookies to a different domain (not sub domain):

 

 

when HTTP_RESPONSE {

 

 

Loop through each response cookie by name

 

 

foreach aCookie [HTTP::cookie names] {

 

 

Set the domain on the cookie to .host

 

 

HTTP::cookie domain $aCookie ".host.com"

 

 

}

 

 

}

 

 

When i tested it I can see the domain request (domain=.host.com) has been added to the cookies using tamper data:

 

 

Set-Cookie: Cookie=12345&PrevPageID=1&PrevURL=https://10.1.1.1/login.aspx&SessionNo=0;domain=.host.com; path=/

 

 

But when i looked at Firefox in the cookie container, it hadnt been set for the 10.1.1.1 address which is what i was expecting however i couldnt see the cookie associated with the new .host.com domain.

 

 

how do i know if its been set?

 

 

Thanks