In bug 437345480 <https://issues.chromium.org/437345480> ( crrev.com/c/7713559) I updated the CookieStore methods to strip leading and trailing tab and space characters from Cookie names and values.
This aligns Chromium with the standardized <https://github.com/whatwg/cookiestore/pull/281> default behavior already shipping in Safari <https://github.com/annevk/WebKit/commit/0b04262c9b8a699f5b21a185512f756e2b915a14> and Firefox <https://bugzilla.mozilla.org/show_bug.cgi?id=1981281> and fixes a bunch of WPTs. While web-observable, the change is extremely unlikely to cause breakage because it makes the Cookie Store more lenient in accepting Cookies. The only hypothetical way this would break a website is if the site relied on rejected Promises from setting cookies with leading / trailing whitespace characters. Out of an abundance of caution there's a feature flag for it (CookieStoreAPIWhitespaceStripping) This is shipping in M148. Thanks! Johann -- You received this message because you are subscribed to the Google Groups "blink-dev" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To view this discussion visit https://groups.google.com/a/chromium.org/d/msgid/blink-dev/CAD_OO4iokNDG%2BwhOJexVez0QoAu3RWAEXX267JRkG-3kUb_UHQ%40mail.gmail.com.
