Open memacs opened 6 years ago
According to RFC 6265, neither whitespace nor double quotes are allowed in cookie values:
cookie-octet = %x21 / %x23-2B / %x2D-3A / %x3C-5B / %x5D-7E
; US-ASCII characters excluding CTLs,
; whitespace DQUOTE, comma, semicolon,
; and backslash
So, this is a case where if we follow the spec strictly, then cookies accepted by other looser parsers will be rejected (as in this case), but if we loosen our parser to allow such cookies, then others might encounter unexpected errors with their cookies because they expect strict parsing.
I'll try to see if there's a way we can add a parse_cookie
variant that users can choose to call to perform less strict parsing.
thanks for your help
I hava a cookie,
In firefox, It can be parse correctly
But I call yaws_api:parse_cookie(Str) , it return []. when I delete
It return the normal result. following is the process