The cookie value is not required to be urlencoded. In practice, you cannot use non-ASCII characters in cookies at all. If really required, this must be configurable.
Rejecting this, to keep things simple, as a primary goal of this code is a reference implementation, not a universal implementation that fits everyone.
The cookie value is not required to be urlencoded. In practice, you cannot use non-ASCII characters in cookies at all. If really required, this must be configurable. Rejecting this, to keep things simple, as a primary goal of this code is a reference implementation, not a universal implementation that fits everyone.