Cookie parsing issue... from Laird, Brian on 2007-03-16 (www-jigsaw@w3.org from March to April 2007)

From: Laird, Brian <BLaird@havigs.com>
Date: Fri, 16 Mar 2007 01:29:46 -0500
To: <www-jigsaw@w3.org>
Message-ID: <198C7B6593B76E44B30C3AAC456E57A1027B167A@electra.Perseco.com>

Hey Yves,

I hope things are well; it has been a while since we have talked. We
came across a problem I am hoping you (or someone who knows the jigsaw
code well) can help us with. In a majority of our processing we are
using some randomly generated cookie values from a third party as kind
of a session identifier. Well a few days ago the value being generated
started to look like this (without the double quotes):
"0_0RbEAwflUxOTIxNjgyMDMzMw==". We also store this value in memory and
compare it to the cookie when the user comes back to our site.

The problem we are seeing is that the browser is sending in the right
value but jigsaw is dropping the last two equal signs. One note is that
the cookie is in the middle of other cookies when you look at the header
but there is semicolon at end of the value as would be expected.

A little bit of background on environment:

- We are running 2.2.5a code

- Jigsaw is using JDK 1.5_06

- Solaris 8

Do you have any thoughts on why this might be happening or at least
which class the actual parsing of the cookies from the request header is
happening in? I am perfectly willing to try to make a fix, but I wasn't
able to easily find where the low level parsing actually took place.

Thanks in advance for any help on this one,

Brian

************************************************************************
This e-mail and any accompanying documents or files contain information that is the
property of HAVI Global Solutions, that is intended solely for those to whom this e-mail is addressed
(i.e., those identified in the "To" and "Cc" boxes), and that is confidential, proprietary,
and/or privileged. If you are not an intended recipient of this e-mail, you are hereby
notified that any viewing, use, disclosure, forwarding, copying, or distribution of any of
this information is strictly prohibited and may be subject to legal sanctions. If you have
received this e-mail in error, please notify the sender immediately of any unintended
recipients, and delete the e-mail, all attachments, and all copies of both from your system.

While we have taken reasonable precautions to ensure that any attachments to this e-mail
have been swept for viruses, we cannot accept liability for any damage sustained as a
result of software viruses.
************************************************************************

Received on Friday, 16 March 2007 06:28:08 UTC