Max-Age cookie attribute is not supported

[jeroenvandijk]

Using the Max-Age attribute is a more natural way of setting a cookie that expires, e.g. max-age: 3600 vs Expires: current-client-date + 3600 seconds. Especially with out of sync client clocks this becomes complicated to get right.

To properly test this implementation it would be nice to have a solution for #57