F5 Logo MyF5
Search
  1. MyF5 Home
  2. F5 Fraud Protection Service: BIG-IP Configuration
  3. Encrypting Data on the Application Level
  4. Overview: Encrypting Data on the Application Level
  5. Applying Ajax encryption on a URL or view
Manual Chapter : Applying Ajax encryption on a URL or view

Applies To:

Show Versions Show Versions

BIG-IP FPS

  • 17.5.0, 17.1.2, 17.1.1, 17.1.0, 17.0.0, 16.1.5, 16.1.4, 16.1.3, 16.1.2, 16.1.1, 16.1.0, 16.0.1, 16.0.0, 15.1.9, 15.1.8, 15.1.7, 15.1.6, 15.1.5, 15.1.4, 15.1.3, 15.1.2, 15.1.0
Manual Chapter
Overview: Encrypting Data on the Application Level
Encrypting data as it leaves the web browser
Configuring a URL for decrypting data
Applying Ajax encryption on a URL or view
Configuring HTML field obfuscation
Removing JavaScript event listeners from parameters
Configuring advanced encryption on a URL or view
Allowing logins after encryption failure

Applying Ajax encryption on a URL or view

You can apply Ajax encryption on your web page if the web page sends data using Ajax and you want the data to be encrypted.
  1. On the Main tab, click
    Security
    Fraud Protection Service
    Anti-Fraud Profiles
    .
    The Anti-Fraud Profiles screen opens.
  2. From the list of profiles, select the relevant profile.
    The Anti-Fraud Profile Properties screen opens.
  3. In the Anti-Fraud Configuration area, click
    URL List
    .
    The URL List opens.
  4. Select the URL or view on which you want to apply Ajax encryption.
    The URL Properties (or View Properties) screen appears.
  5. In the URL Configuration (or View Configuration) area, select
    Application Layer Encryption
    .
    The Application Layer Encryption settings are displayed.
  6. Select the
    Enabled
     check box for
    AJAX Encryption
    .
  7. If your web page uses JSON format for submitting data, do the following for every parameter that you want to have Ajax encryption:
    1. In the URL Configuration (or View Configuration) area, select
      Parameters
      .
    2. Click the
      Add
       button.
      The Parameter Settings screen opens.
    3. In the
      Parameter Name
       field, choose one of the following types for the parameter name:
      • Explicit
        : Assign a specific parameter name.
      • Wildcard
        : Assign a wildcard expression for the parameter name. Any parameter name that matches the wildcard expression is considered legal and receives protection. For example, typing the wildcard expression
        *
         specifies that any parameter name is allowed.
    4. In the Application Layer Encryption section, select both the
      Encrypt
       check box and the
      Substitute Value
       check box.
    5. In the
      Name in Request
       text box, type a mapping key for the parameter that is sent from the client to the server.
      For example, if you have a single page application form with an input field
      name
      ,
      ID
      , or
      Selector
       called
      A
       and you want to send it in the
      B
       key in the payload, type
      B
       in this text box.
      If the input field
      name
      ,
      ID
      , or
      Selector
       in the HTML of your web page has the same
      name
      ,
      ID
      , or
      Selector
       as the key in the payload, you do not need to type a mapping key in this text box.
    6. Click
      Create
      .
      The parameter settings are saved and the URL Properties (or View Properties) screen appears.
  8. Click
    Save
     in the URL/View Properties screen.
    The configuration settings for the URL or view are saved.
Contact Support Contact Support

Have a Question?

Support and Sales >

About F5

Education

F5 Sites

Support Tasks




©2023 F5, Inc. All rights reserved.


Trademarks Policies Privacy California Privacy Do Not Sell My Personal Information Cookie Preferences