ChrisMaKi_15830
Jul 18, 2013Nimbostratus
ASM change Enforced Cookies to case insensitive
I would like to protect the session cookie of our web application from being changed by the client. Therefore I've added the cookie name to the list of enforced cookies in the ASM policy
The list of enforced cookies is case sensitive. However our web application is case insensitive. Is it possible to treat an enforced cookie name as case insensitive in the ASM?
I don't want to add all lower/uppercase variants to the list because this could be hundreds of entries.
e.g. mysessionid, MySessionid, MYSEssionid, and so on.
I'd be happy about a hint. Thanks.
Cookies Settings: By adding enforced cookies
BigIP 11.1.0 Build 2268.0 Hotfix HF5