Join GitHub today
GitHub is home to over 20 million developers working together to host and review code, manage projects, and build software together.
SignalR.Owin incorrectly parses cookeis #1778
I've found SignalR.Owin incorrectly interprets cookies:https://github.com/SignalR/SignalR/blob/master/src/Microsoft.AspNet.SignalR.Owin/ServerRequest.cs#L117
It uses the same code as URL parser which is not correct and causes many problems especially when SessionID contains plus (+) sign.
According to RFC 2109 value has to be:
The quick fix could be modifying that code so it suppresses "+" replacing:
Another issue with the current code that cookie value could be