sandy16
May 06, 2015Altostratus
CSRF protection if HTTP response is compressed
Hi, we plan to enable CSRF protection on the F5. As per the below solution, under the requirements it states that the response should NOT be compressed. - https://support.f5.com/kb/en-us/solutions/public/11000/900/sol11930.html
Is this referencing the response from the server or from the F5?
thnx