cross-domain request enforcement question
cross-domain request enforcement question
I have application people that are shifting towards HTML5 which an application uses COR (cross-domain request).
I am unable to find a definitive thread on my exact question. I see the forums have some that are either extremely old and point to "Page Not Found" Messages.
The information I found is here in these links but still do not answer my question -
https://support.f5.com/kb/en-us/products/big-ip_asm/manuals/product/asm-implementations-11-5-0/16.html https://devcentral.f5.com/questions/adding-cors-response-headers https://devcentral.f5.com/questions/cors-irule-query
I cannot get a page that utilizes cross-domain request to function on the F5. Is the F5 by default stripping the headers out and removing the ability for these pages to display?
I see some individuals have created iRules to add in data in HTTP_REQUEST and HTTP_RESPONSE but was unsure of what was actually causing the problem. I have a basic VIP setup to load balance to the pages that utilize COR and they do not display. Is there anyone that can provide some input?