fix: incorrect idToken regex with subdomains

[ckifer]

Issue # (if available):

43

Description of changes:

• add failing test case for cookies sent with multiple domains in an order that causes the parent idToken to be returned when expecting the idToken from the subdomain

Proposed Regex solution \.[^.]+\.idToken=([^;]+) fails test here when there are . characters in the username. Need better regex before continuing.

Maybe there is a better way to parse idToken?

By submitting this pull request, I confirm that my contribution is made under the terms of the Apache 2.0 license.

[borisfba]

Hello Coltin,

Thank you for your contribution.

In future, we plan to URI encode cookies and avoid using Regex to parse it, because we have one more underlying issue with usernames containing illegal characters. Unfortunately, we cannot commit to a timeline for when it would be released.

[ckifer]

Closing since #46 was merged