Changes between Initial Version and Version 1 of Ticket #19039, comment 3
- Timestamp:
- Oct 16, 2012, 5:00:04 AM (12 years ago)
Legend:
- Unmodified
- Added
- Removed
- Modified
-
Ticket #19039, comment 3
initial v1 1 1 First, we should fix the test `test_repeated_nonstandard_keys` to use the values in #15852 i.e. a colon not a comma, so that it will pass everywhere. We regard this as a bug in the test - it should never have used a comma. If people were relying on that (unlikely), they were relying on a bug. 2 2 3 Second, we should file a bug against Python 3.3. I think this is a bug, since it renders `SimpleCookie` useless for parsing cookies from untrusted sources, and all cookies come from untrusted sources (the client ).3 Second, we should file a bug against Python 3.3. I think this is a bug, since it renders `SimpleCookie` useless for parsing cookies from untrusted sources, and all cookies come from untrusted sources (the client, and often untrusted subdomains). 4 4 5 5 Then, if and only if we get a bug report about failing to handle commas or other characters in cookie names, we patch our SimpleCookie for this case. There is no point us fixing bugs that no-one is encountering in real life. I suspect you'll find that browsers do not accept comma in the cookie name, so they won't be sending cookies like that. People could send them manually to be perverse, but they don't harm anyone but themselves.