Skip to content

WebTestClientRequestConverter mishandles cookies whose value contains =#1040

Open
config25 wants to merge 2 commits intospring-projects:3.0.xfrom
config25:fix/cookie-equals-sign-parsing
Open

WebTestClientRequestConverter mishandles cookies whose value contains =#1040
config25 wants to merge 2 commits intospring-projects:3.0.xfrom
config25:fix/cookie-equals-sign-parsing

Conversation

@config25
Copy link
Copy Markdown
Contributor

@config25 config25 commented Apr 13, 2026

WebTestClientRequestConverter.createRequestCookie() uses split("=") to
parse cookie headers. This causes two problems:

  • Cookie values containing = (e.g. Base64-padded values like YWJjZGVm==)
    are silently truncated at the first =
  • Cookie headers without = throw ArrayIndexOutOfBoundsException

Replace split("=") with indexOf('=') to split on only the first = and
handle the no-= case by returning an empty value.

Fixes gh-1038

base branch 3.0.x

@config25 config25 force-pushed the fix/cookie-equals-sign-parsing branch from 4cf5c5a to ac1b011 Compare April 13, 2026 01:33
@wilkinsona wilkinsona changed the title Fix cookie parsing when value contains equals sign WebTestClientRequestConverter mishandles cookies whose value contains = and fails on cookie headers without = Apr 13, 2026
@wilkinsona wilkinsona added type: bug A bug and removed status: waiting-for-triage Untriaged issue labels Apr 13, 2026
@wilkinsona wilkinsona added this to the 3.0.x milestone Apr 13, 2026
wilkinsona
wilkinsona requested changes Apr 13, 2026
View reviewed changes
Comment thread ...test/java/org/springframework/restdocs/webtestclient/WebTestClientRequestConverterTests.java Outdated
}

@Test
void requestWithCookieValueContainingEqualsSign() {
Copy link
Copy Markdown
Member

@wilkinsona wilkinsona Apr 13, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This method has to be public as the 3.0.x branch uses JUnit 4.

Copy link
Copy Markdown
Contributor Author

@config25 config25 Apr 13, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Sorry about that, I missed the JUnit 4 requirement on the 3.0.x branch. Both test methods are now public. Thank you for catching this!

Comment thread ...test/java/org/springframework/restdocs/webtestclient/WebTestClientRequestConverterTests.java Outdated
@config25
Fix cookie parsing when value contains equals sign
f0a2e34 
Fixes spring-projectsgh-1038

Signed-off-by: config25 <yhkim052556@naver.com>
@config25 config25 force-pushed the fix/cookie-equals-sign-parsing branch from ac1b011 to f0a2e34 Compare April 13, 2026 07:13
wilkinsona
wilkinsona requested changes Apr 13, 2026
View reviewed changes
Comment thread .../src/main/java/org/springframework/restdocs/webtestclient/WebTestClientRequestConverter.java Outdated
Comment on lines +108 to +110
if (separator == -1) {
return new RequestCookie(header, "");
}
Copy link
Copy Markdown
Member

@wilkinsona wilkinsona Apr 13, 2026
edited
Loading

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I don't think this is correct. To have an empty-string value, I believe the header's value would have to be malformed=. Without the equals sign, there should be no cookie at all as the header is invalid. I think failing in this case is fine so I'd just remove lines 108-110.

Copy link
Copy Markdown
Contributor Author

@config25 config25 Apr 16, 2026

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Thanks for the review! I've removed lines 108-110 as suggested.

Since the malformed cookie test (requestWithMalformedCookieHeaderWithoutEqualsSign)
was testing the exact behavior that's now removed, I've also deleted it — failing
in that case is now the expected behavior, as you mentioned.

@wilkinsona wilkinsona changed the title WebTestClientRequestConverter mishandles cookies whose value contains = and fails on cookie headers without = WebTestClientRequestConverter mishandles cookies whose value contains = Apr 13, 2026
@config25
Remove handling for cookie headers without equals sign
428b3bb 
Signed-off-by: config25 <yhkim052556@naver.com>
@config25 config25 force-pushed the fix/cookie-equals-sign-parsing branch from f46ceca to 428b3bb Compare April 16, 2026 06:59
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@wilkinsona wilkinsona wilkinsona requested changes

Assignees

No one assigned

Labels

type: bug A bug

Projects

None yet

Milestone

3.0.x

Development

Successfully merging this pull request may close these issues.

3 participants

@config25 @wilkinsona @spring-projects-issues