[New-bugs-announce] [issue35121] Cookie domain check returns incorrect results
西田雄治
report at bugs.python.org
Wed Oct 31 02:52:48 EDT 2018
New submission from 西田雄治 <bobunderson at gmail.com>:
http.cookiejar.DefaultPolicy.domain_return_ok returns incorrect results.
So, HTTP clients send cookies which issued from wrong server.
policy = http.cookiejar.DefaultCookiePolicy()
req = urllib.request.Request('https://xxxfoo.co.jp/')
print(policy.domain_return_ok('foo.co.jp', req) # should be False, but it returns True
----------
components: Library (Lib)
messages: 328973
nosy: 西田雄治
priority: normal
severity: normal
status: open
title: Cookie domain check returns incorrect results
type: behavior
versions: Python 3.6, Python 3.7
_______________________________________
Python tracker <report at bugs.python.org>
<https://bugs.python.org/issue35121>
_______________________________________
More information about the New-bugs-announce
mailing list