Hi Cedric, Cookie and NewCookie are not the same thing (Cookie vs Set-Cookie), the JAXRS runtime uses typically this config:
headerProviders.put(Cookie.class, new CookieHeaderProvider()); headerProviders.put(NewCookie.class, new NewCookieHeaderProvider()); Means it can still be a CXF bug. Romain Manni-Bucau @rmannibucau <https://twitter.com/rmannibucau> | Blog <http://rmannibucau.wordpress.com> | Github <https://github.com/rmannibucau> | LinkedIn <https://www.linkedin.com/in/rmannibucau> | Tomitriber <http://www.tomitribe.com> 2016-02-20 16:27 GMT+01:00 [email protected] < [email protected]>: > Hello, > > If I send a request with an httponly cookie on my rest service, I receive > an > IllegalArgumentException("Cookie is malformed : " + c) when I call > requestContext.getCookies(). > > Please find my container request filter implementation : > > > If I understand, I think this is a CXF bug (link CXF-6451 > <https://issues.apache.org/jira/browse/CXF-6451> ) but normally this one > have been fixed on 3.1.2 version for NewCookieHeaderProvider.java class. > > But JAXRS Tomee implementation use CookieHeaderProvider (that hasn't the > fix) and not the NewCookieHeaderProvider class. > > Any help would be much appreciated to find a clean workaround > > Regards > > > > -- > View this message in context: > http://tomee-openejb.979440.n4.nabble.com/JAX-RS-with-httpOnly-cookie-an-CXF-bug-tp4677643.html > Sent from the TomEE Users mailing list archive at Nabble.com. >
