Mohanad_313515
Jan 20, 2019Nimbostratus
Strip HTTP Origin header based on its value before hit the ASM
Hi Everyone
Our app using CORS, and it's working normally with correct origin headers:
Origin: "://" [ ":" ]
But also all mobile clients sending Origin header with value 'file://' this causes (Illegal cross-origin request)
POST /xxx/yyy HTTP/1.1
Host: ddd:8001
Connection: keep-alive
Content-Length: 2
Accept: application/json, text/plain, */*
Origin: file://
i want to add iRule to Strip this header
Origin: file://
before hit the ASM and allow normal Origin headers like: Origin: https://xyz.com:8080
Origin: https://xyz.com:8090