2011/6/3 pbuckner <[email protected]>: > Trying to pass an email address in cookie value & expecting something > like: > > Cookie: email="[email protected]" > > to be sent in header. However, I'm seeing > Cookie: email=fred%40example.com > > I see webapi.py: 301 in setcookie() does: > > cookie[name] = urllib.quote(safestr(value)) > > This isn't correct, is it? Cookie names are restricted, but values are > 'quoted-string' as per RFC2965.. which isn't be be confused with url- > quoting. RFC2616 defines 'quoted-string' as, well, a string of TEXT > surrounded by double-quotes. > > So, urllib.quote() is too aggressive, or am I missing something?
quoting the header is required because the value can contain special characters like new lines. I need to read the RFC carefully to understand the need of double-quotes. Anand -- You received this message because you are subscribed to the Google Groups "web.py" group. To post to this group, send email to [email protected]. To unsubscribe from this group, send email to [email protected]. For more options, visit this group at http://groups.google.com/group/webpy?hl=en.
