Matt Kusnierz created CXF-6365:
----------------------------------
Summary: Cookie for mat written to request headers is invalid
Key: CXF-6365
URL: https://issues.apache.org/jira/browse/CXF-6365
Project: CXF
Issue Type: Bug
Components: Transports
Affects Versions: 3.0.4
Reporter: Matt Kusnierz
The org.apache.cxf.transport.http.Cookie.requestCookieHeader() method formats
the Cookie incorrectly with the Version attribute first. The Cookie
specification (RFC 2109: https://www.ietf.org/rfc/rfc2109.txt) states that the
cookie name should be the first of the key-value pairs in the formatted cookie.
Trying to parse cookie headers added in this way using the standard java
utility: java.net.HttpCookie.parse causes an exception to be thrown:
java.lang.IllegalArgumentException: Illegal cookie name.
The fix is trivial, simply add the Version tag last instead of first.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
