http icon indicating copy to clipboard operation
http copied to clipboard

Published 20 hours ago verified publisher icon httprb

Following redirects drops cookies.

Open ixti opened this issue 9 years ago • 4 comments

Reported by @oz: https://github.com/httprb/http/issues/263#issuecomment-156260388

Upon following redirects, redirector should send cookies that were sent in response.

ixti avatar Nov 16 '15 00:11 ixti

Note that this needs to be done carefully with respect to cookie domain scoping rules or it's a potential security vulnerability (e.g. in conjunction with an open redirect)

tarcieri avatar Nov 16 '15 01:11 tarcieri

Good catch. Bright side is that Cookie::Jar has that feature already ;)) So I'll just need to make sure to use it :D

ixti avatar Nov 16 '15 15:11 ixti

Hi, looking for some feedback in https://github.com/httprb/http/pull/613 that addresses this issue.

Kache avatar Jul 01 '20 19:07 Kache

@Kache thank you, sorry for being a bit slow on this, will tackle your PR this weekend.

ixti avatar Jul 03 '20 14:07 ixti