Forum Discussion

Cirrus

Aug 17, 2020

Replace X-Frame-Options value

I need help with my syntax because it is not identifying and changing the text/value as expected. The response header in question is: X-FRAME-OPTIONS: ALLOW-FROM https://my.identitymanager.com:84...

ottleydamian

Cirrus

Aug 20, 2020

Unfortunately, neither of these solutions worked. I tried just the remove, to test and that didn't work either. It seems that we are not catching X-Frame-Options, not sure if ALLOW-FROM is considered part of the header. Suggestions? I will keep trying different things

Dario_Garrido

MVP

Aug 21, 2020

Hello Ottley.

I suspect that you executing those command in a wrong event.

My iRule:

when HTTP_RESPONSE {
    HTTP::header replace X-Frame-Options "ALLOW-FROM https://biz.identitymanager.com:8443"
}

My F5 response:

< Date: Fri, 21 Aug 2020 06:09:59 GMT
< Server: Apache/2.2.15 (CentOS)
< X-Powered-By: PHP/5.3.3
< Content-Length: 7830
< Connection: close
< Content-Type: text/html; charset=UTF-8
< X-Frame-Options: ALLOW-FROM https://biz.identitymanager.com:8443

Regards,

Dario.

Forum Discussion

Replace X-Frame-Options value

Recent Discussions

What are the different phases in DevOps?

Create a CSR and Key using the BigIP LTM GUI when renewing a certificate

F5 Rseries HA

Error when running bigip_command Playbook against LTM : Syntax Error: unexpected argument /bin/sh\n

Can iRule be used to perform exception of IPI category based on Geolocation

Related Content

Removing x-frame-options header from response when using APM

Set x-frames-options header values depending on URI

Clickjacking Protection Using X-FRAME-OPTIONS Available for Firefox

ADFS Proxy Replacement on F5 BIG-IP

Inserting X-frame-Options, X-XSS-Protection, X-Content-Type-Options, Strict-Transport-Security