This issue tracker has been migrated to GitHub, and is currently read-only.
For more information, see the GitHub FAQs in the Python's Developer Guide.

Author orsenthil
Recipients BM, BreamoreBoy, aclover, akuchling, carsten.klein, dstanek, georg.brandl, jerry.seutter, jjlee, karlcow, orsenthil, python-dev, r.david.murray, serhiy.storchaka, spookylukey, tim.peters
Date 2012-04-22.01:28:56
SpamBayes Score -1.0
Marked as misclassified Yes
Message-id <1335058136.98.0.726349655338.issue2193@psf.upfronthosting.co.za>
In-reply-to
Content 
I tested with apache to set ":" in names and then verified the behavior in browsers and it looks like it fine to allow ":" as legal character in cookie name ( though RFC originally does say that). My guess is previously it could have been thought that ":" might hinder parsing, but does not seem so as how Cookie name=value;name2=values2 have evolved.

So in 3.3, I have made the change to just allow ":" in Cookie Name. But as previous versions raised CookieError error, I see this is a change in behavior and it should not be back-ported.

In Docs 2.7,3.2 etc, I see the mention that users should look for and catch CookieError if they are capturing cookies from unknown sources, in case if it contains any illegal characters. That still applies to other illegal characters. I think, the docs could just be updated with mention of illegal characters in python versions to be little more helpful and with that, this issue can be closed.
History
Date User Action Args
2012-04-22 01:28:57orsenthilsetrecipients: + orsenthil, tim.peters, akuchling, georg.brandl, jjlee, dstanek, jerry.seutter, BM, aclover, r.david.murray, karlcow, BreamoreBoy, spookylukey, carsten.klein, python-dev, serhiy.storchaka
2012-04-22 01:28:56orsenthilsetmessageid: <1335058136.98.0.726349655338.issue2193@psf.upfronthosting.co.za>
2012-04-22 01:28:56orsenthillinkissue2193 messages
2012-04-22 01:28:56orsenthilcreate