Fix cookie handling #6636
Closed
Fix cookie handling #6636
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Bumps [typing-extensions](https://github.com/python/typing) from 3.7.4.3 to 4.0.0. - [Release notes](https://github.com/python/typing/releases) - [Changelog](https://github.com/python/typing/blob/master/typing_extensions/CHANGELOG) - [Commits](python/typing@3.7.4.3...4.0.0) --- updated-dependencies: - dependency-name: typing-extensions dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
This reverts commit 8b15cce.
…ibs#6313) (aio-libs#6317) Since aio-libs#4732, it's wrong to says that `setUpAsync()` and `tearDownAsync()` do nothing and can be overridden without calling `super.setUpAsync()` and `super.tearDownAsync()`. (cherry picked from commit d149eff) Co-authored-by: Hoel IRIS <[email protected]>
PR aio-libs#4615 by @meetmangukiya Fixes aio-libs#4663 Co-authored-by: Sviatoslav Sydorenko <[email protected]>
* Bump cryptography from 35.0.0 to 36.0.0 Bumps [cryptography](https://github.com/pyca/cryptography) from 35.0.0 to 36.0.0. - [Release notes](https://github.com/pyca/cryptography/releases) - [Changelog](https://github.com/pyca/cryptography/blob/main/CHANGELOG.rst) - [Commits](pyca/cryptography@35.0.0...36.0.0) --- updated-dependencies: - dependency-name: cryptography dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> * [pre-commit.ci] auto fixes from pre-commit.com hooks for more information, see https://pre-commit.ci Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com> Co-authored-by: pre-commit-ci[bot] <66853113+pre-commit-ci[bot]@users.noreply.github.com>
Bumps [actions/cache](https://github.com/actions/cache) from 2.1.6 to 2.1.7. - [Release notes](https://github.com/actions/cache/releases) - [Commits](actions/cache@v2.1.6...v2.1.7) --- updated-dependencies: - dependency-name: actions/cache dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [python-on-whales](https://github.com/gabrieldemarmiesse/python-on-whales) from 0.31.0 to 0.32.0. - [Release notes](https://github.com/gabrieldemarmiesse/python-on-whales/releases) - [Commits](gabrieldemarmiesse/python-on-whales@v0.31.0...v0.32.0) --- updated-dependencies: - dependency-name: python-on-whales dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…uring app (aio-libs#6341) Co-authored-by: Andrew Svetlov <[email protected]> Co-authored-by: Sam Bull <[email protected]> Co-authored-by: Sviatoslav Sydorenko <[email protected]> Co-authored-by: sha016 <[email protected]>
Bumps [charset-normalizer](https://github.com/ousret/charset_normalizer) from 2.0.7 to 2.0.8. - [Release notes](https://github.com/ousret/charset_normalizer/releases) - [Changelog](https://github.com/Ousret/charset_normalizer/blob/master/CHANGELOG.md) - [Commits](jawah/charset_normalizer@2.0.7...2.0.8) --- updated-dependencies: - dependency-name: charset-normalizer dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [sphinx](https://github.com/sphinx-doc/sphinx) from 4.3.0 to 4.3.1. - [Release notes](https://github.com/sphinx-doc/sphinx/releases) - [Changelog](https://github.com/sphinx-doc/sphinx/blob/4.x/CHANGES) - [Commits](sphinx-doc/sphinx@v4.3.0...v4.3.1) --- updated-dependencies: - dependency-name: sphinx dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [coverage](https://github.com/nedbat/coveragepy) from 6.1.2 to 6.2. - [Release notes](https://github.com/nedbat/coveragepy/releases) - [Changelog](https://github.com/nedbat/coveragepy/blob/master/CHANGES.rst) - [Commits](nedbat/coveragepy@6.1.2...6.2) --- updated-dependencies: - dependency-name: coverage dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [pypa/cibuildwheel](https://github.com/pypa/cibuildwheel) from 2.2.2 to 2.3.0. - [Release notes](https://github.com/pypa/cibuildwheel/releases) - [Changelog](https://github.com/pypa/cibuildwheel/blob/main/docs/changelog.md) - [Commits](pypa/cibuildwheel@v2.2.2...v2.3.0) --- updated-dependencies: - dependency-name: pypa/cibuildwheel dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [pre-commit](https://github.com/pre-commit/pre-commit) from 2.15.0 to 2.16.0. - [Release notes](https://github.com/pre-commit/pre-commit/releases) - [Changelog](https://github.com/pre-commit/pre-commit/blob/master/CHANGELOG.md) - [Commits](pre-commit/pre-commit@v2.15.0...v2.16.0) --- updated-dependencies: - dependency-name: pre-commit dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [aio-libs/create-release](https://github.com/aio-libs/create-release) from 1.2.3 to 1.3.1. - [Release notes](https://github.com/aio-libs/create-release/releases) - [Commits](aio-libs/create-release@v1.2.3...v1.3.1) --- updated-dependencies: - dependency-name: aio-libs/create-release dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
…on failure in GHA (aio-libs#6370) Co-authored-by: Sviatoslav Sydorenko <[email protected]>
…orts in the project (aio-libs#6376) Co-authored-by: pre-commit-ci[bot] <66853113+pre-commit-ci[bot]@users.noreply.github.com> Co-authored-by: Sviatoslav Sydorenko <[email protected]>
Co-authored-by: Andrew Svetlov <[email protected]> (cherry picked from commit eef86e9) Co-authored-by: Se̐rhii Khaly̐mon <[email protected]>
…-release (aio-libs#6381) Co-authored-by: Andrew Svetlov <[email protected]> Co-authored-by: Sviatoslav Sydorenko <[email protected]>
It allows to run CI tests after committing changes
Bumps [sphinxcontrib-spelling](https://github.com/sphinx-contrib/spelling) from 7.2.1 to 7.3.0. - [Release notes](https://github.com/sphinx-contrib/spelling/releases) - [Commits](sphinx-contrib/spelling@7.2.1...7.3.0) --- updated-dependencies: - dependency-name: sphinxcontrib-spelling dependency-type: direct:production update-type: version-update:semver-minor ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [charset-normalizer](https://github.com/ousret/charset_normalizer) from 2.0.8 to 2.0.9. - [Release notes](https://github.com/ousret/charset_normalizer/releases) - [Changelog](https://github.com/Ousret/charset_normalizer/blob/master/CHANGELOG.md) - [Commits](jawah/charset_normalizer@2.0.8...2.0.9) --- updated-dependencies: - dependency-name: charset-normalizer dependency-type: direct:production update-type: version-update:semver-patch ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
Bumps [sphinxcontrib-blockdiag](https://github.com/blockdiag/sphinxcontrib-blockdiag) from 2.0.0 to 3.0.0. - [Release notes](https://github.com/blockdiag/sphinxcontrib-blockdiag/releases) - [Commits](blockdiag/sphinxcontrib-blockdiag@2.0.0...3.0.0) --- updated-dependencies: - dependency-name: sphinxcontrib-blockdiag dependency-type: direct:production update-type: version-update:semver-major ... Signed-off-by: dependabot[bot] <[email protected]> Co-authored-by: dependabot[bot] <49699333+dependabot[bot]@users.noreply.github.com>
… binary distributions (aio-libs#6402) Co-authored-by: Ben Beasley <[email protected]>
…#6409) Co-authored-by: Sviatoslav Sydorenko <[email protected]>
Co-authored-by: TiunovNN <[email protected]>
…libs#6446) (aio-libs#6451) Co-authored-by: Sviatoslav Sydorenko <[email protected]>
…n cchardet (aio-libs#6478) (cherry picked from commit 4df4f13) Co-authored-by: lrjball <[email protected]>
(cherry picked from commit 5d70b8e) Co-authored-by: Sam Bull <[email protected]>
…6503) * Add aiohttp-catcher to 3rd party libraries * [pre-commit.ci] auto fixes from pre-commit.com hooks for more information, see https://pre-commit.ci Co-authored-by: pre-commit-ci[bot] <66853113+pre-commit-ci[bot]@users.noreply.github.com> (cherry picked from commit 240d9c4) Co-authored-by: Yuval <[email protected]>
psf-chronographer
bot
added
the
bot:chronographer:provided
Dreamsorcerer
requested changes
Feb 27, 2022
Comment on lines
+681
to
+687
| jar_filtred = jar.filter_cookies(URL("http://pathtest.com/")) | ||
| self.assertEqual(len(jar_filtred), 1) | ||
| self.assertEqual(jar_filtred["path-cookie"].value, "zero") | ||
|
|
||
| jar_filtred = jar.filter_cookies(URL("http://pathtest.com/one")) | ||
| self.assertEqual(len(jar_filtred), 1) | ||
| self.assertEqual(jar_filtred["path-cookie"].value, "one") |
for more information, see https://pre-commit.ci
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
What do these changes do?
There is an error in cookie handling that override the existing cookie if the path is different. This is a huge bug in aiohttp, as it makes requests to some sites impossible to work.
The RFC 6265 is clear on this point (https://datatracker.ietf.org/doc/html/rfc6265) , for example:
Actually aiohttp only consider domain and name. Pull request #3627 tried to fix this, but the code has been updated vastly since then.
Are there changes in behavior for the user?
No
Related issue number
Checklist
CONTRIBUTORS.txtCHANGESfolder<issue_id>.<type>for example (588.bugfix)issue_idchange it to the pr id after creating the pr.feature: Signifying a new feature..bugfix: Signifying a bug fix..doc: Signifying a documentation improvement..removal: Signifying a deprecation or removal of public API..misc: A ticket has been closed, but it is not of interest to users.