Forum Discussion

Nimbostratus

Jan 27, 2017

cookie secure and http only -- All cookies that gets downloaded

i want to secure and http only all cookies when my application is accessed. Tried couple of irule link text and link text no luck. When i use irule similar to second thread, jsessionid cook...

MVP

Jan 27, 2017

Hi Habib,

you may try the iRule below to set the

HttpOnly

and

Secure

flags to every issued cookie...

when HTTP_RESPONSE {
    foreach cookie [HTTP::cookie names] {
        HTTP::cookie secure $cookie enable 
        HTTP::cookie httponly $cookie enable 
    }
}

Cheers, Kai

Forum Discussion

cookie secure and http only -- All cookies that gets downloaded

Recent Discussions

What is the meaning is 52% block in WAF

Rundeck ansible F5 errors

rewrite Azure AD response for portal access via web portal

AS3 Monitoring multiple ports selectively

Open Redirection Mitigation

Related Content

Cookie-based DDoS protection

Decoding the IPv4 address from the persistence cookie

Cookie Tampering Protection using F5 Distributed Cloud Platform

2. SYN Cookie: Operation

1. SYN Cookie: Intro