Forum Discussion

Nimbostratus

Aug 27, 2013

How to support multiple XML schemas in ASM?

We have an XML-over-HTTP web service which we are attempting to protect with the ASM. The problem I am finding is that there are multiple versions of the API, each of which has minor incompatibiliti...

Nimbostratus

Aug 29, 2013

I figured it out. Header-Based Content Profiles in the Allowed URL Properties:

Just enter multiple entries for (in my case) Content-Type as the Request Header Name and the different version tags go into the Request Header Value. Parse as XML, and use a different XML Profile with each. Each XML Profile has a different version .XSD attached to it. So, if the ASM sees HTTP header "Content-Type: application/com.foobar.api-v2+xml", it will use the provision_api_v2 profile which uses v2 of the XML XSD when parsing it.

Can be verified by the ASM request logs - if there is an XML schema violation and you click for details, it will list the XML Profile that was used when determining the violation:

Forum Discussion

How to support multiple XML schemas in ASM?

Recent Discussions

GTM Packet Capture command

How to Implement 2 Way SSL in F5 LTM

BWC iRule

Citrix XenServer Big-IP Upgrade help

BIG-IP DNS iRule issue with static variable

Related Content

API Discovery and Auto Generation of Swagger Schema

AS3 TLS_Client VS TLS_Server Schema confusion

Cipher Suites Supported (12.1.5.3)

Support of WAF Signature Staging in F5 Distributed Cloud (XC)

Multi-port support for HTTP/TCP load balancers in F5 Distributed Cloud (XC)