django - Python not recognizing cookies in request header -


at work we've been developing python application (django specifically) intermittently seem behave if not recognizing of cookies being sent in request.

the issue not occur, once seems persist indefinitely. issue can resolved clearing cookies , reloading page.

the cookies valid (though there quite few 3rd-party ones in mix) , within maximum size supported both servers , browsers.

solution

if application needs interpret "cookie" header in python using "simplecookie" (widely used python libraries , frameworks), , website's domain has cookies set outside of control, avoid versions of python issue #22931 (https://bugs.python.org/issue22931) in play.

the bug existed in several versions of 3.3.x, 3.4.x , 3.5.x 2.7.9.

details

the issue's diagnosis ended being simple, thought i'd share here using more general language since searching issue didn't yield useful results until had been narrowed down existence of specific valid characters in few cookies.

in python 2.7.9 (and several versions of 3.x) there bug cookies "[" or "]" in values causes parsing of "cookie" header fail silently. since square brackets valid characters cookie value (http://www.rfc-editor.org/rfc/rfc6265.txt), , commonly used in 3rd party libraries issue can detrimental cookie driven functionality in web application.

it particularly elusive because termination of cookie parsing appears occur once attempts parse first cookie square bracket in value. means if cookies happen sent in different order issue may not occur.

for example

if request header formatted cookie: important_cookie=foobar; bad_character=[ "important_cookie"'s value available in application -- not have been if request header had been cookie: bad_character=[; important_cookie=foobar.

once know square brackets causing issue, easy find underlying bug reported in python, honing in on underlying issue can chore.


Comments

Post a Comment

Popular posts from this blog

javascript - Using jquery append to add option values into a select element not working -

i'm looking dynamically populate select element names of items stored array. for reason it's not working , i'm not sure why. html: <div class="col-md-4 col-md-offset-4"> <select class="select1"> </select> , <select class="select2"> </select> </div> note i'm using bootstrap layout. here's jquery i'm using try , populate ".select1" jquery: select: function() { $.each(state.greens, function(index, value) { $(".select1").append("<option value =' " + index + " '>" + state.greens[index].name + "</option>"); }); } note function 'select' stored within object called 'display'. state.greens name of array i'm trying access. so @ end of html page call display.select(); call function. no error messages showing in console. also, saw question: appending
Read more

Android soft keyboard reverts to default keyboard on orientation change -

i'm building android soft keyboard , can't seem fix bug - have arabic , qwerty keyboard , when rotate device on qwerty keyboard (or arabic shift), it's if program has "restarted" , becomes arabic keyboard without shift. the onsaveinstancestate(bundle savedinstancestate) not work because application not extend activity inputmethodservice . i put following in android manifest android:configchanges="keyboard|keyboardhidden|orientation" android:windowsoftinputmode="stateunchanged|adjustresize"> i tried using @override public void onconfigurationchanged(configuration newconfig) { super.onconfigurationchanged(newconfig); log.i(mydebug, "config changed " + currentkeyboard.equals(qwerty)); } however, currentkeyboard.equals(qwerty)) results false , made sure true before orientation change. any appreciated. i think applications fault. if application restarting on orientation change
Read more

jquery - javascript onscroll fade same class but with different div -

i new @ javascript , want learn new. there wrong code : why div fades @ same time. i want ask how fade different div s same class name.can me , explain me. thanks in advance. javascript: $(window).scroll(function(){ if ($( "div.fade" ).offset().top - $(window).scrolltop() <= 100){ $('.fade').addclass( "fade-in"); } else { $('.fade').removeclass("fade-in"); } }); here jsfiddle onscroll = function () { var scrolltop = $(this).scrolltop() ; $("div.fade").each(function(){ if(($(this).offset().top - scrolltop) <= 100){ $(this).toggleclass("fade-in"); } }) }
Read more