How to manage WAF with cloudfront signed cookie

0

Hi there. There is my architecture:

WAF [Check for some cookies exists, else, redirect to login] -->

Cloudfront with behaviors with signed cookie for trust key groups and cache static resources -->

API GW -->

LB -->

EKS

Everything worked find until we integrated the signed cookie with key group trust and then, it's seems that the signed cookie key validation happens before the WAF staff, so we get 403 at any case, before the login itself.

Any idea how to manage that the WAF will occurs before the CF signed cookie validation?

Thanks.

Aucune réponse

Vous n'êtes pas connecté. Se connecter pour publier une réponse.

Une bonne réponse répond clairement à la question, contient des commentaires constructifs et encourage le développement professionnel de la personne qui pose la question.

Instructions pour répondre aux questions