You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Parser for Set-Cookie header (function parse_set_cookie in http.lua) is currently allowing theoretical cookie attributes named "name" or "value" to stomp over the parsed cookie name or value.
There is no easy way to avoid this potential collision without changing the cookie object structure but it is prudent to enforce that the cookie name and value take priority over these attributes.
(This issue is for record only; a fix is coming.)
The text was updated successfully, but these errors were encountered:
Parser for
Set-Cookieheader (functionparse_set_cookieinhttp.lua) is currently allowing theoretical cookie attributes named "name" or "value" to stomp over the parsed cookie name or value.There is no easy way to avoid this potential collision without changing the cookie object structure but it is prudent to enforce that the cookie name and value take priority over these attributes.
(This issue is for record only; a fix is coming.)
The text was updated successfully, but these errors were encountered: