Merged revisions 87550 via svnmerge from svn+ssh://pythondev@svn.python.org/python/branches/py3k ........ r87550 | r.david.murray | 2010-12-28 13:54:13 -0500 (Tue, 28 Dec 2010) | 8 lines #9824: encode , and ; in cookie values so that browsers don't split on them There is a small chance of backward incompatibility here, but only for non-SimpleCookie applications reading SimpleCookie generated cookies. Even then, any such ap is likely to be handling escaped values already, and it would take a fairly perverse implementation of unescaping to fail to unescape these newly escaped chars, so the risk seems minimal. ........

commit: daa7ba038b9556ff0adabb2ab10c092c73b20243 [log] [tgz]
author: R. David Murray <rdmurray@bitdance.com> Tue Dec 28 18:56:33 2010 +0000
committer: R. David Murray <rdmurray@bitdance.com> Tue Dec 28 18:56:33 2010 +0000
tree: e8126330fd2af01df0d7b81aca41e9c41052429d
parent: 6c85838489d4627d0f8292c3a3aead3519d4765c [diff] [blame]
diff --git a/Misc/NEWS b/Misc/NEWS
index d0dd3a1..77d7769 100644
--- a/Misc/NEWS
+++ b/Misc/NEWS

@@ -24,6 +24,9 @@
 Library
 -------
 
+- Issue 9824: SimpleCookie now encodes , and ; in values to cater to how
+  browsers actually parse cookies.
+
 - Issue #5258/#10642: if site.py encounters a .pth file that generates an error,
   it now prints the filename, line number, and traceback to stderr and skips
   the rest of that individual file, instead of stopping processing entirely.
commit	daa7ba038b9556ff0adabb2ab10c092c73b20243	[log] [tgz]
author	R. David Murray <rdmurray@bitdance.com>	Tue Dec 28 18:56:33 2010 +0000
committer	R. David Murray <rdmurray@bitdance.com>	Tue Dec 28 18:56:33 2010 +0000
tree	e8126330fd2af01df0d7b81aca41e9c41052429d
parent	6c85838489d4627d0f8292c3a3aead3519d4765c [diff] [blame]