[CherryPy] #931: CherryPy (3.1.2) chokes on invalid cookies

87 views
Skip to first unread message

CherryPy

unread,
Jun 1, 2009, 3:10:00 PM6/1/09
to cherrypy...@googlegroups.com
#931: CherryPy (3.1.2) chokes on invalid cookies
-----------------------------+----------------------------------------------
Reporter: la...@oddbit.com | Owner: fumanchu
Type: defect | Status: new
Priority: normal | Milestone:
Component: CherryPy code | Keywords:
-----------------------------+----------------------------------------------
I asked one of our support staff to test out a CherryPy based web
application at host.dept.example.com. The application returned an HTTP
400 error code with the following message:

HTTPError(400, "Illegal cookie name __utmz")

The __utmz cookie actually comes from a web site at www.example.com, so
it's completely outside of our control. I don't think CherryPy should be
throwing an exception in this situation. I've simply removed the
exception from my local copy of _cprequest.py, but I'm not sure what the
correct fix would be.

--
Ticket URL: <http://www.cherrypy.org/ticket/931>
CherryPy <http://www.cherrypy.org>
CherryPy - a pythonic, object-oriented HTTP framework

CherryPy

unread,
Aug 19, 2009, 12:23:29 AM8/19/09
to cherrypy...@googlegroups.com
#931: CherryPy (3.1.2) chokes on invalid cookies
-----------------------------+----------------------------------------------
Reporter: la...@oddbit.com | Owner: fumanchu
Type: defect | Status: assigned
Priority: normal | Milestone: 3.2
Component: CherryPy code | Resolution:
Keywords: |
-----------------------------+----------------------------------------------
Changes (by fumanchu):

* milestone: => 3.2
* status: new => assigned

Old description:

> I asked one of our support staff to test out a CherryPy based web
> application at host.dept.example.com. The application returned an HTTP
> 400 error code with the following message:
>
> HTTPError(400, "Illegal cookie name __utmz")
>
> The __utmz cookie actually comes from a web site at www.example.com, so
> it's completely outside of our control. I don't think CherryPy should be
> throwing an exception in this situation. I've simply removed the
> exception from my local copy of _cprequest.py, but I'm not sure what the
> correct fix would be.

New description:

I asked one of our support staff to test out a CherryPy based web
application at host.dept.example.com. The application returned an HTTP
400 error code with the following message:

{{{
HTTPError(400, "Illegal cookie name __utmz")
}}}

The `__utmz` cookie actually comes from a web site at www.example.com, so
it's completely outside of our control. I don't think CherryPy should be
throwing an exception in this situation. I've simply removed the
exception from my local copy of `_cprequest.py`, but I'm not sure what the
correct fix would be.

Comment:

Reformatted.

CherryPy

unread,
Feb 21, 2011, 3:48:27 PM2/21/11
to cherrypy...@googlegroups.com
#931: CherryPy (3.1.2) chokes on invalid cookies
-----------------------------+----------------------------------------------
Reporter: la...@oddbit.com | Owner: fumanchu
Type: defect | Status: assigned
Priority: normal | Milestone: 3.2
Component: CherryPy code | Resolution:
Keywords: |
-----------------------------+----------------------------------------------
Comment (by fumanchu):

That error is one that CherryPy throws after receiving a CookieError. It
would help to know what the original error is. I can't reproduce it.
Reply all
Reply to author
Forward
0 new messages