Bug ID 570926: Provide a way to configure where in payload the CSPM JS is injected.

Last Modified: Jun 10, 2021

Bug Tracker

Affected Product:  See more info
BIG-IP AVR(all modules)

Known Affected Versions:
11.6.0, 11.6.0 HF1, 11.6.0 HF2, 11.6.0 HF3, 11.6.0 HF4, 11.6.0 HF5, 11.6.0 HF6, 11.6.0 HF7, 11.6.0 HF8, 11.6.1, 11.6.1 HF1, 11.6.1 HF2, 13.0.0, 13.1.0,,,,,,,,, 13.1.1,,,,, 13.1.3,,,,,,, 13.1.4,

Fixed In:
13.0.0 HF1, 11.6.2

Opened: Jan 31, 2016
Severity: 3-Major


This is an enhancement that allows you to choose where in the document the CSPM script will be injected.


Today we append the CSPM payload (for client latency measurements) at the end of the HTML document (after the html tag). This works in browsers but it's not compliant to the HTML standard and may break some applications that rely on this standard (not browsers).


You are using some application that can't read the document if something appears after closing the html tag.


Un-checking "Page Load Time" in analytics profile.

Fix Information

Verify that script was injected to the chosen location in the returned document.

Behavior Change