Forum Discussion

Antonio_Varni's avatar
Antonio_Varni
Icon for Nimbostratus rankNimbostratus
Sep 19, 2013

Help with 11.4+ Local Traffic Policies, cookie domain mangling.

Hello. I know I can do this with an iRule - but I was hoping someone could tell me how (or if) I can do this using the new local traffic policies instead.

 

Briefly - I am trying to rewrite response to the client as follows:

 

client: GET / Host: www.example1.com

 

server will respond: Set-Cookie: JSESSIONID=blah; path=/

 

we want to change this to: Set-Cookie: JSESSIONID=blah; path=/; domain=.example1.com

 

... maybe I'm totally on the wrong track. I was trying with local traffic policies but couldn't figure out how to grab the domain of the host header to use to overwrite the (unset) domain portion of the response cookie. So I was content trying to just do the equivalent of if/ elsif / depending on the domain. ie: Host: www.example1.com add domain=.example1.com to the JSESSIONID returned, and so on.

 

Wile I can easily set a cookie or overwrite a cookie completely conditionally based on Host value - I couldn't find a way to preserve the rest of the contents while only modifying the domain.

 

Should I use iRules for this still? Or is there a built in primitive to do this already?

 

Thanks so much in advance!

 

application delivery
design
devops
iRules
LTM
policies
TMSH

3 Replies

Sort By
  • JG's avatar
    JG
    Icon for Cumulonimbus rankCumulonimbus
    Sep 20, 2013

    I'd always try to have the app admin fix the app's problem first.

    Short of that, this might help you:

    https://devcentral.f5.com/wiki/irules.HTTP__cookie.ashx
  • Antonio_Varni's avatar
    Antonio_Varni
    Icon for Nimbostratus rankNimbostratus
    Sep 20, 2013
    Also - are there any good in depth tutorials and/or reference info in local traffic policies? I've read everything I could find and only seen very cursory information. Is there even a devcentral collection of policy rules?
  • StephanManthey's avatar
    StephanManthey
    Icon for MVP rankMVP
    Sep 20, 2013

    You can use 'domain' in context of HTTP_REQUEST to get the relevant domain information from [HTTP::host] and store it in a variable. Now you can parse the webservers response in context of HTTP_RESPONSE for the specific cookie, get it´s value, append the path information, delete the previous cookie and re-insert it.