W3C home > Mailing lists > Public > www-lib@w3.org > July to September 2001

Re: Bug in HTCookie.c

From: Olaf Walkowiak <olaf@sevenval.de>
Date: Tue, 3 Jul 2001 09:59:34 +0200
To: "James D. Brown" <jamesbrown@shopswell.com>
Cc: www-lib@w3.org
Message-ID: <20010703095934.A6928@thor.office.sevenval.de>
James D. Brown wrote:

> At http://www.netscape.com/newsref/std/cookie_spec.html, the spec
> states: This string is a sequence of characters excluding
> semi-colon, comma and white space. If there is a need to place such
> data in the name or value, some encoding method such as URL style
> %XX encoding is recommended, though no encoding is defined or
> required.

> IMHO, this is a shortcoming of the HTTP cookie spec, in that it does not 
> require the RFC 1738, section 2.2, encoding for cookie values.  At least the 
> spec does contain a disclaimer at the top:

The Problem is that some server send cookies with commas in the value
(Browser seem to be able to deal with that, at least Netscape, Opera
and MSIE). But with libwww, the cookies value gets truncted. :-(


ceterum censeo microsoft esse delendam.
Received on Tuesday, 3 July 2001 04:00:02 UTC

This archive was generated by hypermail 2.3.1 : Tuesday, 6 January 2015 21:33:54 UTC