@Nurza wrote:
Hello there ! It seems that HAProxy splits Cookie headers.
Example:
Input headers:
cookie: cookie_a=content_a ; cookie_b=content_bOutput headers:
cookie: cookie_a=content_a
cookie: cookie_b=content_bAm I right ?
I saw that with tcpdump + wireshark, but I am no 100% sure that HAProxy received only one cookie header because I don’t know how to read https content with wireshark (not yet).
If HAProxy splits cookie header, it could be great if it was optional. Because some applications don’t underestand multi cookie headers.
EDIT:
My backend is a HTTP 1.1 backend and I saw this : https://http2.github.io/http2-spec/#CompressCookie
I quote : "If there are multiple Cookie header fields after decompression, these MUST be concatenated into a single octet string using the two-octet delimiter of 0x3B, 0x20 (the ASCII string "; ") before being passed into a non-HTTP/2 context, such as an HTTP/1.1 connection, or a generic HTTP server application. "EDIT2:
Maybe it’s not HAProxy, but my browser who is splitting cookie headers (chromium & firefox)
Posts: 3
Participants: 3