Newsgroups: php.internals
Path: news.php.net
Xref: news.php.net php.internals:56342
Return-Path: <tyra3l@gmail.com>
Mailing-List: contact internals-help@lists.php.net; run by ezmlm
Delivered-To: mailing list internals@lists.php.net
Received: (qmail 14060 invoked from network); 16 Nov 2011 11:30:05 -0000
Received: from unknown (HELO lists.php.net) (127.0.0.1)
  by localhost with SMTP; 16 Nov 2011 11:30:05 -0000
Authentication-Results: pb1.pair.com header.from=tyra3l@gmail.com; sender-id=pass
Authentication-Results: pb1.pair.com smtp.mail=tyra3l@gmail.com; spf=pass; sender-id=pass
Received-SPF: pass (pb1.pair.com: domain gmail.com designates 209.85.220.170 as permitted sender)
X-PHP-List-Original-Sender: tyra3l@gmail.com
X-Host-Fingerprint: 209.85.220.170 mail-vx0-f170.google.com  
Received: from [209.85.220.170] ([209.85.220.170:62301] helo=mail-vx0-f170.google.com)
	by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP
	id 50/60-11951-CBE93CE4 for <internals@lists.php.net>; Wed, 16 Nov 2011 06:30:05 -0500
Received: by vcbfl10 with SMTP id fl10so357541vcb.29
        for <internals@lists.php.net>; Wed, 16 Nov 2011 03:30:01 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
        d=gmail.com; s=gamma;
        h=mime-version:in-reply-to:references:date:message-id:subject:from:to
         :cc:content-type;
        bh=1b8XnCRioeugTAd7cYW+5/N2VlxeOvGrfAeyO1Wr9Mg=;
        b=woGUAnBOezfrlq/2bkWhYZNW9Z4N28ZRSaE1wdYEkFFGdJws7V+KylVe84f9BkUWNn
         Ofkb508gZ0YkORh+Lp2dEWZxzPPtUTSfpIzPuhSClfEUgnOPwl3wAOvktjvL8RtMzrEH
         9VXBp9lH3WMpakvNw72xPLpI/1DWlo9VSKsnc=
MIME-Version: 1.0
Received: by 10.229.227.202 with SMTP id jb10mr4649865qcb.72.1321443001526;
 Wed, 16 Nov 2011 03:30:01 -0800 (PST)
Received: by 10.229.38.134 with HTTP; Wed, 16 Nov 2011 03:30:01 -0800 (PST)
In-Reply-To: <A0.00.11951.ABA93CE4@pb1.pair.com>
References: <CACwt+Jczb7DeptyJ=KT_-2CaCrL0ALhiv5VF_7jpKXuth2CXgQ@mail.gmail.com>
	<CAKxcST_Cw8CQ-5g3Egeb7GfkzLauA8i0N6u3JW8RURkYXk-NEA@mail.gmail.com>
	<CACwt+Je2kbcuqLP23YXc80r9oUKCRvdy9_KN6kMXAONPysbKvA@mail.gmail.com>
	<A0.00.11951.ABA93CE4@pb1.pair.com>
Date: Wed, 16 Nov 2011 12:30:01 +0100
Message-ID: <CAH-PCH7ZjpaiuSmiHHbF7gLzWS=xJfg0LxSRMo7ZyK-NvdPk7A@mail.gmail.com>
To: Michael Wallner <mike@php.net>
Cc: internals@lists.php.net
Content-Type: multipart/alternative; boundary=0016363b8ec2b26aee04b1d86c93
Subject: Re: [PHP-DEV] session_regenerate_id() not replacing Set-Cookie header
From: tyra3l@gmail.com (Ferenc Kovacs)

--0016363b8ec2b26aee04b1d86c93
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: quoted-printable

On Wed, Nov 16, 2011 at 12:12 PM, Michael Wallner <mike@php.net> wrote:

> On Tue, 15 Nov 2011 23:51:25 +0100, Patrick ALLAERT wrote:
>
> >>> As per rfc6265, it seems incorrect:
> >>> "Servers SHOULD NOT include more than one Set-Cookie header field in
> >>> the same response with the same cookie-name."
> >>>
> >
> > @mike
> >
> > Since you are the one who introduced the comment, you might be the best
> > person to comment on this.
> >
>
> If you set replace to 1 it would replace any Set-Cookie header, not
> necessarily the session cookie header.
>
> Mike
>
>
>
if we fix that, I would like to see
https://bugs.php.net/bug.php?id=3D38104(previously reported as
https://bugs.php.net/bug.php?id=3D31455) fixed also.

--=20
Ferenc Kov=C3=A1cs
@Tyr43l - http://tyrael.hu

--0016363b8ec2b26aee04b1d86c93--