Re: RFC6265bis status from Matthew Kerwin on 2016-10-05 (ietf-http-wg@w3.org from October to December 2016)

From: Matthew Kerwin <matthew@kerwin.net.au>
Date: Thu, 6 Oct 2016 08:25:33 +1000
To: Jim Manico <jim@manicode.com>
Cc: Daniel Veditz <dveditz@mozilla.com>, Daniel Stenberg <daniel@haxx.se>, HTTP working group mailing list <ietf-http-wg@w3.org>
Message-ID: <CACweHNA547pZ2uJwiitqPMfkqqk2O+V49qF7dttbm4UBRDcy5w@mail.gmail.com>

On 6 October 2016 at 08:12, Jim Manico <jim@manicode.com> wrote:

> I think this is bad behavior. If multiple cookies from the same domain
> have the same name yet different values, I think all values should all be
> returned. This suggested behavior is also how get parameters work in order
> to support multi-select lists.
>
>
But that's how you update cookies. Doesn't matter if it's in a single
request, or subsequently; sending set-cookie with the same name (and other
attributes) and a new value overwrites the old cookie.

In this case it's just confirming that "domain=.example.org" is treated the
same as "domain=example.org"

(Before I should have said: that seems to be how Chrome treats it, since
httpbin.org isn't storing any state)

Cheers
-- 
  Matthew Kerwin
  http://matthew.kerwin.net.au/

Received on Wednesday, 5 October 2016 22:26:03 UTC