[AWS] cookie

Pascal Obry p.obry@wanadoo.fr
Fri, 22 Nov 2002 10:57:24 +0100

Previous message: [AWS] cookie
Next message: [AWS] Cookie again
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jacob,
 > I am almost certain that a "cookie" can be set in such a way
 > that it will be returned with every single HTTP request the
 > browser makes.  There must at least be some reason for the
 > option "Enable cookies for the originating web site only" in
 > Mozilla.

Hum, indeed... Look at the at the [RFC 2109].


4.2.2  Set-Cookie Syntax

   The syntax for the Set-Cookie response header is

   set-cookie      =       "Set-Cookie:" cookies
   cookies         =       1#cookie
   cookie          =       NAME "=" VALUE *(";" cookie-av)
   NAME            =       attr
   VALUE           =       value
   cookie-av       =       "Comment" "=" value
                   |       "Domain" "=" value
                   |       "Max-Age" "=" value
                   |       "Path" "=" value
                   |       "Secure"
                   |       "Version" "=" 1*DIGIT
   Domain=domain
      Optional.  The Domain attribute specifies the domain for which the
      cookie is valid.  An explicitly specified domain must always start
      with a dot.

   Path=path
      Optional.  The Path attribute specifies the subset of URLs to
      which this cookie applies.

But there is no support for domain in AwS at this stage.

Pascal.

-- 

--|------------------------------------------------------
--| Pascal Obry                           Team-Ada Member
--| 45, rue Gabriel Peri - 78114 Magny Les Hameaux FRANCE
--|------------------------------------------------------
--|         http://perso.wanadoo.fr/pascal.obry
--| "The best way to travel is by means of imagination"
--|
--| gpg --keyserver wwwkeys.pgp.net --recv-key C1082595

Previous message: [AWS] cookie
Next message: [AWS] Cookie again
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]