Set Variable: extraction
A variable must exist before you can manipulate it. To create a new variable, see Create a Variable.
Extract value
-
In the Set Variable behavior, select the variable you want to modify.
-
In the Create Value From field, select Extract.
-
In the Get Data From field, select the location you want to extract the value from. See the Extract locations table for more details.
-
Depending on the location you chose, specify the parameters by which the edge servers generate the variable value.
-
Optionally, in the Operation field, apply a transformation.
Extract data from built-in variables
Built-in variables offer a basic set of information about a request. With the Set Variable behavior, you can extract additional information from that request, such as specific cookie or header names, location data, networks quality, or certificates.
Incorporate a built-in variable into a user-defined variable to extract additional information from that request.
Extract locations
Request header
Enter the HTTP header. The header name is case insensitive.
Response header
Enter the HTTP header. The header name is case insensitive.
Client certificate
Extract a value from the client-side SSL certificate.
Certificate field | Description |
---|---|
Version Number | The certificate's X509 version number. |
Serial | The serial number in hex. |
MD5 Fingerprint | The MD5 fingerprint, hex encoded. (This value is generated by the <> server based on the certificate's contents). |
SH1 Fingerprint | The SHA1 fingerprint, hex encoded. (This value is generated by the <> server based on the certificate's contents). |
Hashed Fingerprint | The fingerprint hashed based on the hashing algorithm in signature_algorithm, hex encoded. (This value is generated by the <> server based on the certificate's contents). |
Issuer Name | The distinguished name field of the issuer (signer). |
Subject Name | The distinguished name field of the user. |
Not Before Date | The not-before date in YYYY/MM/DD HH:MI:SS ZONE format. The ZONE (such as GMT) will only be displayed if it's present in the certificate. |
Not After Date | The not-after date in YYYY/MM/DD HH:MI:SS ZONE format. The ZONE (such as GMT) will only be displayed if it's present in the certificate |
Certificate DER Formatted | The entire DER encoded certificate in hex. If the customer wants us to pass this to the origin, the other fields shouldn't be passed as they're all extracted from this value. |
Certificate PEM Formatted | The certificate in PEM format base64 encoded as one single line without any new-line characters or carriage returns. |
Cert PEM No Labels | The certificate in PEM format without the header and footer base64 encoded as one single line without any new-line characters or carriage returns. |
Count | The number of client certificates received. Normally, this should be 1. If the client submits a chain, it will contain the number of all certificates received. If the client doesn't submit a certificate, its value is 0. (This value is generated by the <> server). |
Status Message | A short message regarding the outcome of the certificate validation. If the certificate is missing, its value is "missing". If it passed validation, its value is "ok". Otherwise, it contains a very short description of the problem (such as "Certificate has expired", etc). |
Key Length | Returns the size of the key in bits. For example, a 1024 bit RSA key returns "1024". This is helpful to determine FIPS-compliance of a certificate. |
Request cookie
Enter the cookie name. This is case sensitive.
Edgescape data
The data extracted from Edgescape applies to the connecting IP address. This is the user's IP an edge server receives in a client request request, or the IP address of the last intermediate proxy, if applicable. If an.COMPANY_NICKNAME parent server receives a request forwarded by an .COMPANY_NICKNAME child server, this is the IP address of the child server. You can distinguish between both cases by setting the Request Type match criteria to CLIENT_REQ
.
The Edgescape fields from which you can extract values include:
|
|
|
Path component offset
Choose which value in the URL you want to use as the variable's value. You can use negative index (-1) to extract the right part of the path.
In a path of
/x/y/z/index.html
Path component offset 1 isx
Path component offset 2 isy
Path component offset 3 isz
.
Query string parameter
Enter the query string parameter name. This is case sensitive.
Updated 5 months ago