This Bugzilla instance is a read-only archive of historic NetBeans bug reports. To report a bug in NetBeans please follow the project's instructions for reporting issues.

Bug 23487

Summary: HTTPSession doesn't (always) work with non-RFC cookies
Product: obsolete Reporter: Terry Heatlie <theatlie>
Component: simAssignee: Terry Heatlie <theatlie>
Status: RESOLVED FIXED    
Severity: blocker    
Priority: P3    
Version: 3.x   
Hardware: All   
OS: All   
Issue Type: DEFECT Exception Reporter:
Bug Depends on:    
Bug Blocks: 21683    

Description Terry Heatlie 2002-05-14 20:49:09 UTC 
HTTPSession was initially written to work with
RFC 2109 cookies.  However, a flag was added
to make it more lax in what it accepted.  The
intention was to make it interoperate with
the older style of cookie, as used by Navigator.
However, this support is broken in a couple of
respects.  The chief problem is that the old
style cookie uses ; as a separator when sending
cookies, and does not use "," as a separator
between cookies.

Thus receiving cookies can fail if the cookie 
has an embedded comma - for instance, in the
expiry date attribute.

Sending cookies needs to be changed to use
";" not "," in the non-RFC case.
Comment 1 Terry Heatlie 2002-05-14 20:49:59 UTC 
working on fixing this...
Comment 2 Terry Heatlie 2002-05-15 02:23:28 UTC 
The code was modified to parse differently if
strict == false.  Also to create the cookie
differently.  In both cases the ";" character
is used as a separator, not the "," character.