New submission from Patrick Bogen:
SimpleCookie uses _quote to quote cookie values, which converts special
characters to \OCTAL notation. This is not RFC6265 compliance, which requires-
in part- that cookie values do not contain backslashes:
cookie-value = *cookie-octet / ( DQUOTE *cookie-octet DQUOTE )
cookie-octet = %x21 / %x23-2B / %x2D-3A / %x3C-5B / %x5D-7E
; US-ASCII characters excluding CTLs,
; whitespace DQUOTE, comma, semicolon,
; and backslash
----------
components: Library (Lib)
messages: 203529
nosy: pdbogen
priority: normal
severity: normal
status: open
title: SimpleCookie Generates Non-RFC6265-Compliant Cookies
type: behavior
versions: Python 2.7
_______________________________________
Python tracker <rep...@bugs.python.org>
<http://bugs.python.org/issue19670>
_______________________________________
_______________________________________________
Python-bugs-list mailing list
Unsubscribe:
https://mail.python.org/mailman/options/python-bugs-list/archive%40mail-archive.com
