#16768: Wrong cookie set by CSRF middleware
-------------------+------------------------------
Reporter: ike@… | Owner: nobody
Type: Bug | Status: new
Milestone: | Component: contrib.csrf
Version: 1.3 | Severity: Normal
Keywords: | Triage Stage: Unreviewed
Has patch: 0 | Easy pickings: 0
UI/UX: 0 |
-------------------+------------------------------
Trying to setup jmeter for scalability testing I found following bug in
CSRF Middleware
After few normal responses like this:
{{{
172.29.4.168 - - [08/Sep/2011:13:11:38 +0200] "GET / HTTP/1.0" 200 12003
"csrftoken=0c85747298965a0fb54310eafa4da475" "-"
"Java/1.7.0"
}}}
Django returns this strange CSRF cookie:
{{{
172.29.4.168 - - [08/Sep/2011:13:31:46 +0200] "GET / HTTP/1.0" 200 12003
"csrftoken=Set-Cookie: csrftoken=ab04081d4bd93d21c1a2c56599b30a04\x5C073
expires=Th
u\x5C054 06-Sep-2012 11:31:00 GMT\x5C073 Max-Age=31449600\x5C073 Path=/"
"-" "Java/1.7.0"
}}}
--
Ticket URL: <https://code.djangoproject.com/ticket/16768>
Django <https://code.djangoproject.com/>
The Web framework for perfectionists with deadlines.
--
You received this message because you are subscribed to the Google Groups
"Django updates" group.
To post to this group, send email to [email protected].
To unsubscribe from this group, send email to
[email protected].
For more options, visit this group at
http://groups.google.com/group/django-updates?hl=en.
