HTTPCookieProperty's "secure" property seems broken

I'm unable to set the "secure" property of HTTPCookieProperty (for initializing HTTPCookie) to false.

tried:
.secure: "FALSE"
.secure: "false"
.secure: false

but all of above resulted in "cookie.isSecure" being true.

The only thing that worked was not providing the field at all (which made the property default to false).

Seems like a niche bug?

Up vote post of jcp_jcp Down vote post of jcp_jcp
316 views
Posted by
jcp_jcp
Reply
Add a Comment

Replies

That’s kinda how HTTP cookies work. Consider the secure-av product in RFC 6265. There isn’t any syntax for setting the attribute to false. You do that by simply not including the attribute.

Share and Enjoy

Quinn “The Eskimo!” @ Developer Technical Support @ Apple
let myEmail = "eskimo" + "1" + "@" + "apple.com"

Posted by
eskimo
Up vote reply of eskimo Down vote reply of eskimo
Add a Comment