Wildcards in Form detection - Client Initiated

Question

Hi,&nbsp;
I am working on a application where we try to implement SSO.
It has two URI's which the login form can be found:&nbsp;
"/" and "/sys/login"&nbsp;
Now, form detection by absence of session cookie is not working, as is not removed when a new login form is presented. We have to detect it by URI.&nbsp;
The problem, is when the client times out, it is redirected to "/sys/login?redirectURI=". Previous_uri is what the client was browsing before timeout.&nbsp;
I tried the documents, and experimented on adding "/sys/login" to the Form Detection, but without success.&nbsp;
Are there any way to perform this kind of form detection, where the login is located at uri /, and a /sys/login with GET parameters attached? My first idea is regex/wildcard, but I find no reference to this in documentation.&nbsp;
-E&nbsp;

kunjan_118660 · Answer

Have you tried "/sys/login*" for start-uri?&nbsp;

kunjan · Answer

Have you tried "/sys/login*" for start-uri?&nbsp;

erlend_123973 · Answer

Yes, I have tried, but it does not match the URI if GET parameters are sent

erlend_123973 · Answer

Yes, I have tried, but it does not match the URI if GET parameters are sent

Forum Discussion

Wildcards in Form detection - Client Initiated

4 Replies

Bram - January 2026 Featured Member

F5 Container Ingress Services (CIS) and using k8s traffic policies to send traffic directly to pods

F5 Architecture Track Sessions - AppWorld 2026

Recent Discussions

rSeries Configuration Backup

Raise your hand if you'll be at AppWorld 2026

AWIC (test)

AWS F5_OWASP Managed Rule Blocking requests

F5OS VLAN naming length restrictions

Related Content

Proxy Protocol v2 Initiator

F5 Distributed Cloud JA4 detection for enhanced performance and detection

Proxy Protocol Initiator

Accelerate your AI initiatives using F5 VELOS

Overview of MITRE ATT&CK Framework and Initial Access Tactic (TA0001)

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS