[issue2193] Cookie Colon Name Bug
John J Lee
report at bugs.python.org
Wed Sep 22 00:32:14 CEST 2010
John J Lee <jjlee at users.sourceforge.net> added the comment:
Looks like a bug. Here's the trac bug that this caused -- trac fixed their bug by working around this bug in a really ugly way:
http://trac.edgewall.org/ticket/2256
It would be nice to notify the trac developers if/when this is fixed.
This bug is probably not specific to colons (e.g. commas used to be valid in HTTP cookie strings, and still are as far as I know -- somebody should test what current browsers do to make sure). The set of characters regarded as legal is less important than the fact that parsing a Cookie header should *never* raise CookieError -- it should just ignore any invalid cookies. Still, IIRC there isn't any need to treat any of them as invalid, since more or less anything is a valid cookie (or was in the past -- as I say, maybe browsers have cleaned up since then, but I'd be surprised).
----------
_______________________________________
Python tracker <report at bugs.python.org>
<http://bugs.python.org/issue2193>
_______________________________________
More information about the Python-bugs-list
mailing list