47429 – Cookie value with equal sign getting truncated

Bug 47429 - Cookie value with equal sign getting truncated

Summary: Cookie value with equal sign getting truncated

Status:	RESOLVED DUPLICATE of bug 44679

Alias:	None

Product:	Tomcat 6
Classification:	Unclassified
Component:	Servlet & JSP API (show other bugs)
Version:	6.0.18
Hardware:	PC Windows Vista

Importance:	P2 normal (vote)
Target Milestone:	default
Assignee:	Tomcat Developers Mailing List

URL:
Keywords:

Depends on:
Blocks:

Reported:	2009-06-25 09:58 UTC by veera
Modified:	2010-05-05 12:11 UTC (History)
CC List:	0 users

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description veera 2009-06-25 09:58:51 UTC

It seems Tomcat has implemented the RFC standards in the latest version which doesn't allow "=" sign in the cookie value. But in our organization, we authenticate the user by an encrypted cookie. Its a different team which creates the cookie and it is being consumed by many applications. This cookie has the "=" sign in the value. We were fine until we used Tomcat 5.5.20. But when we want to upgrade to 6.0.18, we are facing issue and the funcationallity is completly broken. Is there any solution available.

Note: we cannot go ahead and ask to change the cookie value delimited by another notation now,as all the applications will get impacted.

Comment 1 Mark Thomas 2009-06-25 10:19:14 UTC

Workarounds are available. Further advice is available via the users list if required.

Comment 2 Filip Hanik 2009-06-25 10:20:15 UTC

Please Use the tomcat user mailing list as a support forum.

Comment 3 Konstantin Kolinko 2010-05-05 12:11:26 UTC

Since 6.0.24 there is a configuration option, that allows '=' in the cookie value. See
http://tomcat.apache.org/tomcat-6.0-doc/config/systemprops.html

*** This bug has been marked as a duplicate of bug 44679 ***