JSON Data

Question

I'm trying to understand how to handle an ASM policy that appears to be finding JSON data and not handling it properly. The person who set up the policy using the wizard didn't check the box for JSON data, so we may have to simply reconfigure the policy and lose what we've learned so far, but I'm hoping there's a different way to handle it.&nbsp;
But the bigger question is whether I'm even on the right track, and what will happen once we set up the JSON profile. I'm attaching a sample of what the data looks like, and it's clearly an address array, but it's incomplete in the sense that it hasn't grabbed everything through the final closing bracket. Since these are addresses, it's extremely unlikely there will be actual duplicates, which is I suppose why ASM is identifying this as an illegal parameter. I can create a JSON profile and tell ASM to use the JSON profile for these entries, but I'm not sure what the long-term effects of that will be -- whether that will result in similar (but not duplicate) entries not being identified as not being illegal parameters. &nbsp;
Any comments or suggestions? Thanks. &nbsp;
 &nbsp;

john_meggers · Answer

There was supposed to be an attachment to my message but I don't see it, and I don't see a way to attach it here. Basically, the "illegal parameter" looks like: 
&nbsp;  
&nbsp; {"address":{"address_no":1042752,"type_desc":"Home0x20Address","street1":"1000x20Main0x20Street","street2":"","city":"Anytown","state":"ZZ","postal_code":"12345","country":"USA","primary_ind":"Y","address_type":3,"country_id":"1","months":"YYYYYYYYYY", 
&nbsp;  
&nbsp; and then that's the end of it. 
&nbsp;  
&nbsp; Again, thanks for any information or suggestions. &nbsp;

matfa_119223 · Answer

Hey, I'm running into the same issue. Any chance you were able to resolve this? It seems like the F5 isn't parsing through the JSON data correctly in order to pick out the specific objects as parameters.

torti · Answer

this doesn't look like valid json data. It isn't close at the end

torti · Answer

the json profile is bind via parameter or via url. Are you sure, it is received as parameter value? if it is like in the example from above, this doesn't work and you have to bind the json profile to the url.

matfa_119223 · Answer

Yep, you're exactly right. I wasn't binding my JSON profile to the exact URL where the payload was being transferred. Once I did that, I was able to send data through without the entire payload ending up in a parameter violation.&nbsp;
Thanks for the reply.&nbsp;

Forum Discussion

JSON Data

5 Replies

Recent Discussions

F5Access | MacOS Sonoma

Rewrite uri translation not working

Chrome V 124+ on MacOS - Virtual Server Access Issue

Transaction looks successful but file not downloading

Overwriting or adding LTM SSL Traffic cert and key using iControlREST

Related Content

F5 Network Map to Json with Python

Demystifying iControl REST Part 4: Working with JSON Data

Simple iRulesLX JSON rewrite

Mitigating JSON-based SQL injection with BIG-IP ASM / Advanced WAF Attack Signatures

Sending HSL data in json format.