From bf0508fabfbfa2fa778edbf5b94d5c54a952156d Mon Sep 17 00:00:00 2001 From: Vadim Zhestikov Date: Thu, 18 Dec 2025 16:45:21 -0800 Subject: Improved $cookie_ evaluation. In case "Cookie" header is sent by client, multiple cookie pairs were incorrectly split by a semicolon and comma. Now they are split by a semicolon only. For example, next variables will be found for "Cookie: a=b, c=d; e=f": - $cookie_a: "b, c=d" - $cookie_e: "f" Closes #1042 on GitHub. --- src/http/modules/ngx_http_userid_filter_module.c | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'src/http/modules') diff --git a/src/http/modules/ngx_http_userid_filter_module.c b/src/http/modules/ngx_http_userid_filter_module.c index e52844446..86ec38988 100644 --- a/src/http/modules/ngx_http_userid_filter_module.c +++ b/src/http/modules/ngx_http_userid_filter_module.c @@ -338,8 +338,8 @@ ngx_http_userid_get_uid(ngx_http_request_t *r, ngx_http_userid_conf_t *conf) ngx_http_set_ctx(r, ctx, ngx_http_userid_filter_module); } - cookie = ngx_http_parse_multi_header_lines(r, r->headers_in.cookie, - &conf->name, &ctx->cookie); + cookie = ngx_http_parse_cookie_lines(r, r->headers_in.cookie, &conf->name, + &ctx->cookie); if (cookie == NULL) { return ctx; } -- cgit