Permalink
Commits on Jan 24, 2012
Commits on Jan 12, 2012
  1. Do not include user information or fragment part from a Referer URI.

    knu committed Jan 12, 2012
    It is required by RFC 2616 14.36 that a Referer URI MUST NOT include a
    fragment part.
    
    As for the user information part there seems to be no explicit mention
    in RFC 2616 nor RFC 3986, but I believe we should just follow what
    most major browsers do and remove user information part if any for
    security reasons.
Commits on Jan 3, 2012
Commits on Dec 22, 2011
  1. In meta refresh, escape special characters in the URI before parsing.…

    drbrain committed Dec 22, 2011
    … % is excluded because Safari doesn't escape it. Issue #177
Commits on Dec 20, 2011
Commits on Nov 23, 2011
Commits on Nov 22, 2011
Commits on Nov 11, 2011
  1. Introduce save_cookies().

    knu committed Nov 11, 2011
  2. Add rdoc for Cookie.parse.

    knu committed Nov 11, 2011
  3. Add test_new.

    knu committed Nov 11, 2011
Commits on Nov 9, 2011
Commits on Nov 8, 2011
  1. Conditionally accept a cookie with a public suffix as domain attribute.

    knu committed Nov 8, 2011
    RFC 6265 5.3 says if the canonicalized request-host is identical to
    the domain attribute, the user agent must accept the cookie turning
    the host-only flag on.
  2. Sort cookies by path length and creation time as requested by RFC 6265.

    knu committed Nov 8, 2011
    Creation time and last-access time are introduced while at it.