[Webkit-unassigned] [Bug 171700] New: [Cocoa] Converting from WebCore::Cookie to NSHTTPCookie always marks cookies as secure

Thu May 4 16:48:23 PDT 2017

https://bugs.webkit.org/show_bug.cgi?id=171700

            Bug ID: 171700
           Summary: [Cocoa] Converting from WebCore::Cookie to
                    NSHTTPCookie always marks cookies as secure
           Product: WebKit
           Version: WebKit Nightly Build
          Hardware: Unspecified
                OS: Unspecified
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKit2
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: bburg at apple.com

Per <https://developer.apple.com/reference/foundation/nshttpcookiesecure>,

Passing NSHTTPCookieSecure with any value–including @NO–to +[NSHTTPCookie cookieWithProperties:] will create a cookie with the "Secure" flag. The code currently boxes a BOOL into an NSBoolean unconditionally, causing all cookies to have the secure flag.

This only seems to practically affect cookies created via WebCookieManager[Proxy].

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20170504/1973748e/attachment-0001.html>