#9824: encode , and ; in cookie values so that browsers don't split on them There is a small chance of backward incompatibility here, but only for non-SimpleCookie applications reading SimpleCookie generated cookies. Even then, any such ap is likely to be handling escaped values already, and it would take a fairly perverse implementation of unescaping to fail to unescape these newly escaped chars, so the risk seems minimal.

commit: e05ca2aff4e7e3da133c2a2410e7d2c9bb3c1d12 [log] [tgz]
author: R. David Murray <rdmurray@bitdance.com> Tue Dec 28 18:54:13 2010 +0000
committer: R. David Murray <rdmurray@bitdance.com> Tue Dec 28 18:54:13 2010 +0000
tree: 5acbe67bba3c5dd2f939c9a45179207f8e903ff2
parent: 8aa7e999b5ab87cdbefe441649c223647875c110 [diff] [blame]
diff --git a/Lib/test/test_http_cookies.py b/Lib/test/test_http_cookies.py
index b008e0f..f9a98c4 100644
--- a/Lib/test/test_http_cookies.py
+++ b/Lib/test/test_http_cookies.py

@@ -69,6 +69,14 @@
         </script>
         """)
 
+    def test_extended_encode(self):
+        # Issue 9824: some browsers don't follow the standard; we now
+        # encode , and ; to keep them from tripping up.
+        C = cookies.SimpleCookie()
+        C['val'] = "some,funky;stuff"
+        self.assertEqual(C.output(['val']),
+            'Set-Cookie: val="some\\054funky\\073stuff"')
+
     def test_special_attrs(self):
         # 'expires'
         C = cookies.SimpleCookie('Customer="WILE_E_COYOTE"')
commit	e05ca2aff4e7e3da133c2a2410e7d2c9bb3c1d12	[log] [tgz]
author	R. David Murray <rdmurray@bitdance.com>	Tue Dec 28 18:54:13 2010 +0000
committer	R. David Murray <rdmurray@bitdance.com>	Tue Dec 28 18:54:13 2010 +0000
tree	5acbe67bba3c5dd2f939c9a45179207f8e903ff2
parent	8aa7e999b5ab87cdbefe441649c223647875c110 [diff] [blame]