Problem with detecting form: why use headers on HTTP_REQUEST, and not on HTTP_RESPONSE

Question

Hi,&nbsp;
I'm trying to recognise/detect a login form on the back-end application. There is no unique login URI and sometimes the client has a cookie while the back-end asks to log in again.&nbsp;
I have found that the back-end application supplies a HTTP header with the response ("RespondingWithSignonPage"), indicating that a login is required. &nbsp;
Now, I want to enter this into my Form - Client Initiated, Form Detection. I select Header, enter "RespondingWithSignonPage". It doesn't work. Then I read the documentation, and it appears that this relates to headers sent by the client (HTTP_REQUEST), not during the response.&nbsp;
Is my assumption correct? Why would it be like that? How can I detect a form based on the cookies and headers of the client? Seems like they got it reversed?&nbsp;
Thank you
Vincent&nbsp;

belanger__yves · Answer

I have the same issue, have you found a solution?&nbsp;
Yves&nbsp;

belanger__yves · Answer

Hi,&nbsp;
I think I found a simpler solution. I use the advance option request negative for the session cookie.&nbsp;
Thanks
Yves&nbsp;

Forum Discussion

Problem with detecting form: why use headers on HTTP_REQUEST, and not on HTTP_RESPONSE

2 Replies

Recent Discussions

ASM instance creation

[ASM] - what is "Browser Challange file" ?

[ASM] - HTML5 Cross-Domain Request Enforcement - CLI command

Reverse Proxy Not Behaving

Stable Firmware for F5

Related Content

SSL Orchestrator Advanced Use Cases: Detecting Generative AI

Detect and stop exfiltration attempts with F5 Distributed Cloud App Infrastructure Protection

Bidirectional Forwarding Detection (BFD) Protocol Cheat Sheet

Synthetic Monitoring helps you detect application issues before your users do

Detecting /# in an URL