You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@httpd.apache.org by Joseph Schaefer <jo...@yahoo.com> on 2016/07/01 02:12:02 UTC

Re: Mergine of Multiple Cookie Headers

Most cookies don't use quoted values tho, and I'm not sure what this does for those.

Sent from my iPhone

> On Jun 30, 2016, at 10:51 AM, Yann Ylavic <yl...@gmail.com> wrote:
> 
> On Thu, Jun 30, 2016 at 4:46 PM, Rainer Canavan
> <ra...@sevenval.com> wrote:
>> On Wed, Jun 29, 2016 at 10:27 AM, Yann Ylavic <yl...@gmail.com> wrote:
>>> 
>>> RequestHeader edit* Cookie
>>> ([^=;,]++)(="(?:[^\\\\"]\\\\.)*+[^"]*+"|[^;,]*)?+[;,] $1$2; early
>> 
>> I have to admit that I'd never have thought of using mod_headers. Both
>> solutions work as expected, but Yann's solution looks somewhat more
>> robust to me, so I think I'll go with that.
> 
> I think I forgot a .*+ above to really eat the quoted escapes, so I'd
> rather propose:
> RequestHeader edit* Cookie
> ([^=;,]++)(="(?:[^\\\\"]*+\\\\.)*+[^"]*+"|[^;,]*)?+[;,] $1$2; early
> 
> Regards,
> Yann.