Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

STREAM profile (HTTP > HTTPS) with host exception

Go to solution
escman
Cirrus
Cirrus

‎29-Sep-2022 08:07

Hello guys,

I do need to add a exception into the default stream irule (HTTP to HTTPS) to bypass the www.w3.org domain:

I got this iRule:

when HTTP_REQUEST {
STREAM::disable
HTTP::header remove "Accept-Encoding"
}
when HTTP_RESPONSE {
if {[HTTP::header value Content-Type] contains "text"}{
STREAM::expression {@http:(?!//www\.w3\.org)@https://@}
STREAM::enable
}
}

however.. through this regular expression the virtual server is resetting the connections.. have any ideas how to do it in other way?

Thanks 🙂

 

Labels:
0 Kudos
1 ACCEPTED SOLUTION

Go to solution
escman
Cirrus
Cirrus
In response to Enes_Afsin_Al

‎19-Oct-2022 19:02

Hi Enes,

I done it explict instead use only "http" > "https"  (the real domain http://domain.com to https://domain.com) and works fine!

Thank you 🙂

View solution in original post

4 REPLIES 4

Go to solution
Enes_Afsin_Al
MVP
MVP

‎29-Sep-2022 13:35

Hi escman,

If you are having this problem when load svg files, there is an article about it.

K04347914: When accessing web application images don't load - SVG image/icon failed to load
https://support.f5.com/csp/article/K04347914

0 Kudos

Go to solution
escman
Cirrus
Cirrus
In response to Enes_Afsin_Al

‎14-Oct-2022 16:58

Hi sir,

I already tried to skip svg files but also there are alot of javascript codes running at page (note that the server is entire HTTP due ssloffload) and, the issue releated with the svg/png objects works fine but some javascript elements just do not occur probaly due stream profile. I dont know if its right to bypass the javascript because its showed as MIME text/html at content response and the first "if" will trigger... I don't know if it's correct, however, its possible to change all "HTTP" references in the application code to null (like change http://domain.com to domain.com), and leave like a hybrid request? and then let the browser interpret the correct protocol.

0 Kudos

Go to solution
Leslie_Hubertus
Community Manager
Community Manager
In response to escman

‎26-Oct-2022 13:21

Hi @escman , it looks like @Enes_Afsin_Al  hasn't had a chance to come back to answer your follow-up, so I'll see if I can find a colleague to jump in to help. 

0 Kudos

Go to solution
escman
Cirrus
Cirrus
In response to Enes_Afsin_Al

‎19-Oct-2022 19:02

Hi Enes,

I done it explict instead use only "http" > "https"  (the real domain http://domain.com to https://domain.com) and works fine!

Thank you 🙂

Copyright © 2023 Khoros, LLC