This Bugzilla instance is a read-only archive of historic NetBeans bug reports. To report a bug in NetBeans please follow the project's instructions for reporting issues.

Bug 23487 - HTTPSession doesn't (always) work with non-RFC cookies
Summary: HTTPSession doesn't (always) work with non-RFC cookies
Status: RESOLVED FIXED
Alias: None
Product: obsolete
Classification: Unclassified
Component: sim (show other bugs)
Version: 3.x
Hardware: All All
: P3 blocker (vote)
Assignee: Terry Heatlie
URL:
Keywords:
Depends on:
Blocks: 21683
  Show dependency tree
 
Reported: 2002-05-14 20:49 UTC by Terry Heatlie
Modified: 2002-05-15 02:23 UTC (History)
0 users

See Also:
Issue Type: DEFECT
Exception Reporter:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Terry Heatlie 2002-05-14 20:49:09 UTC 
HTTPSession was initially written to work with
RFC 2109 cookies.  However, a flag was added
to make it more lax in what it accepted.  The
intention was to make it interoperate with
the older style of cookie, as used by Navigator.
However, this support is broken in a couple of
respects.  The chief problem is that the old
style cookie uses ; as a separator when sending
cookies, and does not use "," as a separator
between cookies.

Thus receiving cookies can fail if the cookie 
has an embedded comma - for instance, in the
expiry date attribute.

Sending cookies needs to be changed to use
";" not "," in the non-RFC case.
Comment 1 Terry Heatlie 2002-05-14 20:49:59 UTC 
working on fixing this...
Comment 2 Terry Heatlie 2002-05-15 02:23:28 UTC 
The code was modified to parse differently if
strict == false.  Also to create the cookie
differently.  In both cases the ";" character
is used as a separator, not the "," character.