On 4/26/2017 11:55 AM, Mark Thomas wrote:
<snip/>
In short, yes there is a conflict.
RFC 6265 does not permit ',' (and a bunch of other characters) to be
used in the value and provides no escape or encoding syntax for
including these characters.
RFC 2109 allows quoted string to be used. In this Tomcat can (and will)
do what needs to be done to make the cookie value 'just work'.
Seems like a BIG change for a minor update (8.5.13 --> 8.5.14), no?
You could switch to the LegacyCookieProcessor. Other than that, you'd
need to find a different delimited for the values in you Cookie.
Where would I go about setting the Cookie Processor?
Thanks,
Igal
---------------------------------------------------------------------
To unsubscribe, e-mail: users-unsubscr...@tomcat.apache.org
For additional commands, e-mail: users-h...@tomcat.apache.org
