[Zope3-dev] z3 webserver bug?

Roger Ineichen dev at projekt01.ch
Mon Sep 5 06:59:16 EDT 2005 

Hi together

I have a strange error. 
There is a page with a link running on a SSL webserver (not z3).
This link points to a apache webserver where rewrites the 
URL pointing to a z3 server. The page where the link is shown
is a intranet and requires a login with cookies.

The URL of the server (not z3) showing the link is something like
https://foo.bar.com

The link where zope runns is something like:
http://something.bar.com 

The problem.
------------
If you click on the link on the SSL server (not z3), the cookie 
get send to the z3 server (See request below). Then the server is 
running into a CookieError because the z3 server don't know about 
this sent cookie from another SLL server (not z3).

I guess you can reproduce this if you simply put a link from a 
SSL server to a z3 server. Can somebody confirm this?

Question
--------
Why does the z3 server parse this cookie and end in a 
CookieError?

This happens useing ie 6.0 explorer.

Request sent from *clicking the link on the SSL server":
--------------------------------------------------------
GET / HTTP/1.1
Accept: */*
Accept-Language: en,de-ch;q=0.8,de;q=0.5,fr;q=0.3
Accept-Encoding: gzip, deflate
User-Agent: Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR
1.1.4322)
Host: www.ch.amadeus.com
Connection: Keep-Alive
Cookie: <here follows cookie data>

See the traceback:

-----------------------------
2005-09-05T11:36:55 ERROR root Exception during task 
Traceback (most recent call last): 
  File "E:\Zope3New\src\zope\server\taskthreads.py", line 48, in
handlerThread 
  File "E:\Zope3New\src\zope\server\serverchannelbase.py", line 207, in
service 
  File "E:\Zope3New\src\zope\server\http\httptask.py", line 71, in
service 
  File "E:\Zope3New\src\zope\server\http\publisherhttpserver.py", line
54, in executeRequest 
  File "E:\Zope3New\src\jsonserver\httpfactory.py", line 94, in __call__ 
    request = request_class(input_stream, output_stream, env) 
  File "E:\Zope3New\src\zope\publisher\browser.py", line 220, in
__init__ 
  File "E:\Zope3New\src\zope\publisher\http.py", line 254, in __init__ 
  File "E:\Zope3New\src\zope\publisher\http.py", line 352, in
__setupCookies 
  File "E:\Zope3New\src\zope\publisher\http.py", line 339, in
_parseCookies 
  File "C:\Python24\lib\Cookie.py", line 568, in __init__ 
    if input: self.load(input) 
  File "C:\Python24\lib\Cookie.py", line 621, in load 
    self.__ParseString(rawdata) 
  File "C:\Python24\lib\Cookie.py", line 652, in __ParseString 
    self.__set(K, rval, cval) 
  File "C:\Python24\lib\Cookie.py", line 574, in __set 
    M.set(key, real_value, coded_value) 
  File "C:\Python24\lib\Cookie.py", line 453, in set 
    raise CookieError("Illegal key value: %s" % key) 
CookieError: Illegal key value: Williams/OU 
-----------------------------

Regards
Roger Ineichen
_____________________________
Projekt01 GmbH
www.projekt01.ch
Langackerstrasse 8
6330 Cham
phone     +41 (0)41 781 01 78
mobile    +41 (0)79 340 52 32
fax       +41 (0)41 781 00 78
email r.ineichen at projekt01.ch
_____________________________
END OF MESSAGE

More information about the Zope3-dev mailing list