diana_24252
Apr 02, 2009Nimbostratus
Need iRule to enable "secure" attribute on cookies
ASP.NET application is sending 4 cookies to the client and they are not marked "secure" (i.e., the cookies don't have the attribute that tells the client PC to send the cookies only over an SSL connection). The cookies do not need to be encrypted, they just need to have the "secure" attribute enabled. I found this:
when HTTP_RESPONSE
{
foreach cookiename [HTTP::cookie names]
{
HTTP::cookie secure $cookiename enable;
}
}
but I am not sure how to convert it to a working iRule for our situation.
The cookie names are as follows:
ASP.NET_SessionId
.ASPXAUTH
VenueDLA
.ASPXCOOKIEAUTH-VenueRRDAdmin
This is for a LTM 3400, BIG-IP 9.3.0 Build 178.5
Thank you!