Hi Sergey, 3.1.6 did not yet fix the issue for us, from jira I see I would have to use 3.1.7-SNAPSHOT, this is currently not an option for us - instead we now set the cookie manually as recommend in the jira.
It's not only the path attribute btw, the quoting of the cookie _value_ also broke other functionality of ours, it also was unexpected and also cost me hours to find the changed cookie behaviour as the cause. Actually I question the wisdom of introducing this quoting at all. After experiencing that it broke two unrelated features in our code, I expect it will cause a lot of grief for many people. Grief that is _not_ caused by CXF _not_ performing automatic quoting, or at least not to this extent. Doing some research seems to confirm this sentiment, please see balusc's answer here for a strong argument against quoting (Latest IE version does supposedly still not interpret quoted cookie values correctly!): http://stackoverflow.com/a/7233959 Regards, Andreas 2016-06-07 17:10 GMT+02:00 Sergey Beryozkin <[email protected]>: > Hi > > It has been fixed in > https://issues.apache.org/jira/browse/CXF-6862 > > Can you try CXF 3.1.6 please ? > I'll think of introducing an option of disabling it completely unless a > given value contains a space character, but CXF 3.1.6 should deal correctly > again with Path values with '/' characters > > Cheers, Sergey > On 07/06/16 14:19, Andreas Vallen wrote: > >> Hi, >> >> is there an easy way to disable the automatic quoting of cookie values >> that >> was introduced with CXF-6729? >> >> I have a web application firewall that regards the addition of quotes as a >> change which invalidates the cookie. >> >> The quoting by the way is triggered due to the presencs of a forward >> slash, >> the need for which the above issue already questions, so maybe you >> reconsider and just leave forward slashes unquoted. >> >> Cheers, >> Andreas >> >> -- >> Andreas Vallen >> >> >
