b64decode

Description¶

Returns a string that is base-64 decoded.

Syntax¶

b64decode <string>

b64decode <string>¶

Returns a string that is base-64 decoded

Examples¶

when RULE_INIT {
   set ::key [AES::key]
}
when HTTP_RESPONSE {
   set decrypted [HTTP::cookie "MyCookie"]
   HTTP::cookie remove "MyCookie"
   set encrypted [b64encode [AES::encrypt $::key $decrypted]]
   HTTP::cookie insert name "MyCookie" value $encrypted
}
when HTTP_REQUEST {
   set encrypted [HTTP::cookie "MyCookie"]
   HTTP::cookie remove "MyCookie"
   set decrypted [AES::decrypt $::key [b64decode $encrypted]]
   HTTP::cookie insert name "MyCookie" value $decrypted
}

Note: b64decode seems to trigger a runtime TCL error when decoding
fails. See below for an example which uses catch to handle this.
Test decoding an invalid string

log local0. "[b64decode "\\a b c d"]"

LTM log output

01220001:3: TCL error: scratch_rule <RULE_INIT> - conversion error invoked from within "b64decode "\\a b c d""

Use catch to handle runtime errors when decoding a potentially invalid input string

# Try to base64 decode $string_b64encoded. Handle errors using catch.
#   Successful execution of b64decode by catch will return 0 and the output will be written to $string_b64decoded
if {[catch {b64decode $string_b64encoded} string_b64decoded] == 0 and $string_b64decoded ne ""}{
   # base64 decoding succeeded
} else {
   # base64 decoding failed
}

Related Information¶

Valid Events:

ALL_EVENTS, GLOBAL_GTM, UTILITY_COMMAND

Warning

The links to the sample code below are remnants of the old DevCentral wiki and will result in a 404 error. For best results, please copy the link text and search the codeshare directly on DevCentral.

Sample Code:

Apache mod_auth_tkt_ single sign on - Parse and verify an Apache mod auth_tkt single sign on (SSO) cookie.
Client Auth Using HTML Forms - This iRule illustrates how to use HTML Forms for client authentication.
Google Authenticator iRule For Two-Factor Auth With LDAP - This iRule adds two-factor authentication to a virtual server by combining an LDAP account with a Google Authenticator token
LTM sorry page image when no pool members available - Return sorry page with text & images by simply creating an image of the sorry page to return when no pool members are availble to the virtual
LTM Image Hosting - Host Images on LTM in External Class
MS Exchange Active Sync Device Auth - Compares the DeviceID of the client against a Data Group list, (useful for centralized management of devices)
MS Exchange Active Sync Multi Device Auth - Utilizes the Exchange extended attributes to store multiple devices per client, (i.e. iPhone, iPad, etc.) to validate the device as approved for the assigned user.
Parse username from HTTP requests - Parse the username from HTTP requests in the basic auth header and POST data
Rate Limit HTTP Requests - Limits HTTP POST requests by user
Reverse Proxy With Basic SSO - The iRule implements a authenticated HTTPS reverse proxy.
Yubikey 2Factor Authentication with BIG-IP LTM - This iRule provides 2-Factor Authentication with YubiCloud Service

Introduced: BIGIP-9.0.0
Introduced: GTM-11.1.0

Notes:¶

Use catch to avoid issues with non b64encoded strings causing a TCL error and resetting your connection.

The BIG-IP API Reference documentation contains community-contributed content. F5 does not monitor or control community code contributions. We make no guarantees or warranties regarding the available code, and it may contain errors, defects, bugs, inaccuracies, or security vulnerabilities. Your access to and use of any code available in the BIG-IP API reference guides is solely at your own risk.

b64decode¶

Description¶

Syntax¶

b64decode <string>¶

Examples¶

Related Information¶

Notes:¶