Forum Discussion

Wgl_Paul_Evans_'s avatar
Wgl_Paul_Evans_
Icon for Nimbostratus rankNimbostratus
Feb 12, 2018

Proactive Bot Defense & Deep Linking

Hey guys,

 

I'm working on implementing deep linking into our mobile application. I'm not developing the app but I am a dev for the website and have been in regular contact with the mobile devs & our IT infrastructure guys to help out with this problem.

 

We're running into an issue with the proactive bot defense where it isn't allowing any traffic from Apple's crawler past the proactive bot defense.

 

Our mobile app developers are saying because the request comes from the OS rather than the mobile app that it won't work? (This seems a little strange to me personally, but regardless it's the pro-active bot defense that is currently standing in our way).

 

When I try to verify this with the appsearch-validation-tool (https://search.developer.apple.com/appsearch-validation-tool) by Apple I'm receiving an error saying that it is unable to parse the apple-app-site-association file.

 

I'm not sure if anyone here has had any experience with this but it would be great to get some extra info to be pointed in the right direction!!

 

Thanks,

 

Paul

 

ASM Advanced WAF
BIG-IP
proactive bot defense
security

1 Reply

Sort By
  • Erik_Novak's avatar
    Erik_Novak
    Icon for Employee rankEmployee
    Feb 16, 2018

    According to Apple, "User-agent strings will contain “Applebot” together with additional agent information. For example: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_10_1) AppleWebKit/600.2.5 (KHTML, like Gecko) Version/8.0.2 Safari/600.2.5 (Applebot/0.1)"

     

    Applebot is definitely one of the bot signatures used by the DoS profile. Can you try adding it to the Disabled Signatures list in your DoS profile?