Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions
Custom Alert Banner

F5 AppWorld 2024 session proposal deadline extended to Friday, December 8th!

iRule to secure flag on specific URL (Multiple URL in one VS)

kridsana
Cirrocumulus
Cirrocumulus

‎16-Jun-2021 01:50

Hi

 

We know that F5 can add secure attr in cookie from irule HTTP_RESPONSE <https://support.f5.com/csp/article/K11324>

but this is apply to all website in virtual server!!

 

We have many URL in one virtual server. (Multi domain). ie URL-a.example.com and URL-b.example.com have the same Virtual server

 

Can we just add secure flag on cookie only when we access URL-a.example.com ? no need to add flag when we access URL-b

 

I think we need variable to check if http:host is URL-a or URL-b, but I don't know how to do it when this variable has to share on HTTP_REQUEST and HTTP_RESPONSE event on the same times.

 

Thank you

Labels:
0 Kudos
1 REPLY 1

SanjayP
MVP
MVP

‎16-Jun-2021 04:40 - last edited on ‎04-Jun-2023 20:52 by Fog

You may try below. 

when HTTP_REQUEST {
set sflag 1
if { [class match [HTTP::host] equals secure-flag-domains] } { set sflag 0 }
return
}
 
when HTTP_RESPONSE {
    if { $sflag == 0} { 
    foreach mycookie [HTTP::cookie names] {
    HTTP::cookie secure $mycookie enable
   }
  }
}
0 Kudos
Copyright © 2023 Khoros, LLC