zzzzzz

@samdark The value portion of the cookie will automatically be urlencoded, but i dont need `urlencode`

> Why? `ebaKUq90PhiHck_MR7st-E1SxhbYWiTsLo82mCTbNuAh7rgflx5LVsYfJJseyQCrODuVcJkTSYhm1WKte-l5lQ==` I use this csrf token string, but it will be sended to blowser with `ebaKUq90PhiHck_MR7st-E1SxhbYWiTsLo82mCTbNuAh7rgflx5LVsYfJJseyQCrODuVcJkTSYhm1WKte-l5lQ%3D%3D` then i must decode it before send it back to backend server...