luo980/curl
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
24,234 Commits 20 Branches 224 Tags 202 MiB
bccf1dce53
Commit Graph

3 Commits

Author SHA1 Message Date
Daniel Gustafsson
e6522522f9 cookie: Add support for cookie prefixes 
The draft-ietf-httpbis-rfc6265bis-02 draft, specify a set of prefixes
and how they should affect cookie initialization, which has been
adopted by the major browsers. This adds support for the two prefixes
defined, __Host- and __Secure, and updates the testcase with the
supplied examples from the draft.

Closes #3554
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
 2019-02-17 00:09:30 +01:00
Daniel Gustafsson
7a09b52c98 cookies: leave secure cookies alone 
Only allow secure origins to be able to write cookies with the
'secure' flag set. This reduces the risk of non-secure origins
to influence the state of secure origins. This implements IETF
Internet-Draft draft-ietf-httpbis-cookie-alone-01 which updates
RFC6265.

Closes #2956
Reviewed-by: Daniel Stenberg <daniel@haxx.se>
 2018-12-13 09:57:58 +01:00
Daniel Stenberg
09cca9813d docs/HTTP-COOKIES: converted to markdown 2016-03-29 08:53:40 +02:00