f5devcentral / ps-convert

Convert with Policy Supervisor Tutorial
10 stars 2 forks source link

Policy Supervisor converts default Sensitive Parameters to Cookies #16

Closed yogibear15 closed 11 months ago

yogibear15 commented 1 year ago

ASM's (and Silverline's) sensitive parameter setting == 'mask value in logs' in XC.  By default, the 'password' parameter is marked sensitive.

When converting a policy from ASM/SL, the sensitive parameter 'password' is defined in XC service policy not as a parameter but as a cookie:

image

The expected behavior is for the Type to Parameter, not Cookie.

Nikoolayy1 commented 1 year ago

Not only cookies in my case the parameter named password is added as an HTTP header for some reason in the WAF XC policy.

image

nikg commented 11 months ago

Will need to check again after the updates.

nikg commented 11 months ago

Fixed in the latest release.