For more information regarding the security incident at F5, the actions we are taking to address it, and our ongoing efforts to protect our customers, click here.

Forum Discussion

Michael_108224's avatar
Michael_108224
Icon for Nimbostratus rankNimbostratus
Sep 05, 2014

test for http response header, if not there set one

the senario is, the webserver sometimes "forgot" to set http header. I would like a irule witch first is checking if the http header is ther. If the header is present (dont change). If the header is ...
application delivery
devops
iRules
LTM
Michael_108224's avatar
Michael_108224
Icon for Nimbostratus rankNimbostratus
Sep 05, 2014

thanks for your ideer. I have modified it a littel, trying to make it fit my vhost irule like :

 

switch $vhost { "domain1" { HTTP::version "1.1" HTTP::header remove Server } "domain2" { if !{[HTTP::header exists "Access-Control-Allow-Headers"]} { HTTP::header insert Access-Control-Allow-Headers "" } if !{[HTTP::header exists "Access-Control-Allow-Origin"]} { HTTP::header insert Access-Control-Allow-Origin "" } if !{[HTTP::header exists "Access-Control-Allow-Credentials"]} { HTTP::header insert Access-Control-Allow-Credentials "true" } } }

 

but I get this error in /var/log/ltm :

 

warning mcpd[7640]: 01071859:4: Warning generated : /Common/town-multi:518: warning: [use curly braces to avoid double substitution][!{[HTTP::header exists "Access-Control-Allow-Headers"]}] /Common/town-multi:521: warning: [use curly braces to avoid double substitution][!{[HTTP::header exists "Access-Control-Allow-Origin"]}] /Common/town-multi:524: warning: [use curly braces to avoid double substitution][!{[HTTP::header exists "Access-Control-Allow-Credentials"]}]

 

but it seemes to work....