Implement domain check on cookies

[jonathanstowe]

Currently the cookies are sent on any subsequent request on the same useragent irrespective of the domain of the cookie.

The code in HTTP::Cookies is commented out and needs a proper implementation.

I think this should be done before the #156 as it would be less secure than it already is to be sending the cookies randomly on a redirect.