[version 0.10.0 ediware**20070918170014] { hunk ./CHANGELOG.txt 1 +Version 0.10.0 +2007-09-18 +Added support for "HttpOnly" cookie attribute (due to a bug report by Alexey Goldin) + hunk ./cookies.lisp 2 -;;; $Header: /usr/local/cvsrep/drakma/cookies.lisp,v 1.13 2007/06/25 10:25:15 edi Exp $ +;;; $Header: /usr/local/cvsrep/drakma/cookies.lisp,v 1.14 2007/09/18 14:27:42 edi Exp $ hunk ./cookies.lisp 58 -transmitted over secure connections.")) +transmitted over secure connections.") + (http-only-p :initarg :http-only-p + :initform nil + :accessor cookie-http-only-p + :documentation "Whether the cookie should not be +accessible from Javascript. + +This is a Microsoft extension that has been implemented in Firefox as +well. See .")) hunk ./cookies.lisp 81 - (with-slots (name value expires path domain securep) + (with-slots (name value expires path domain securep http-only-p) hunk ./cookies.lisp 83 - (format stream "~A~@[=~A~]~@[; expires=~A~]~@[; path=~A~]~@[; domain=~A~]~@[; secure~]" + (format stream "~A~@[=~A~]~@[; expires=~A~]~@[; path=~A~]~@[; domain=~A~]~@[; secure~]~@[; HttpOnly~]" hunk ./cookies.lisp 86 - path domain securep)))) + path domain securep http-only-p)))) hunk ./cookies.lisp 284 - :securep (parameter-present-p "secure" parameters)))) + :securep (not (not (parameter-present-p "secure" parameters))) + :http-only-p (not (not (parameter-present-p "HttpOnly" parameters)))))) hunk ./doc/index.html 80 +
  • cookie-http-only-p hunk ./doc/index.html 103 -Here's an example session with Drakma 0.3.0 which demonstrates some of its -features. (Some linebreaks were added or removed to enhance -legibility.) Note that this doesn't necessarily reflect the current -version of Drakma. The examples should work nevertheless. +Here's an example session with Drakma 0.3.0 which demonstrates +some of its features. (Some linebreaks were added or removed to +enhance legibility.) Note that this doesn't necessarily reflect the +current versions of Drakma and Hunchentoot. The examples should work +nevertheless - kind of... hunk ./doc/index.html 644 -The current version is 0.9.1. Drakma can be installed +The current version is 0.10.0. Drakma can be installed hunk ./doc/index.html 1079 -and :SECUREP all of which are optional except for the -first two. The meaning of these initargs and the -corresponding accessors should be pretty clear if one looks at -the original -cookie specification. +:SECUREP, and :HTTP-ONLY-P all of which are +optional except for the first two. The meaning of these initargs +and the corresponding accessors should be +pretty clear if one looks at +the original +cookie specification (and +at this +page for the HttpOnly extension). hunk ./doc/index.html 1113 +
    cookie-http-only-p (cookie cookie) => http-only-p +
    (setf (cookie-http-only-p (cookie cookie)) http-only-p) hunk ./doc/index.html 1122 -and securep is a securep and http-only-p are . All other values are strings. +booleans. All other values are strings. hunk ./doc/index.html 1408 -$Header: /usr/local/cvsrep/drakma/doc/index.html,v 1.74 2007/07/12 18:52:15 edi Exp $ +$Header: /usr/local/cvsrep/drakma/doc/index.html,v 1.75 2007/09/18 14:27:44 edi Exp $ hunk ./drakma.asd 2 -;;; $Header: /usr/local/cvsrep/drakma/drakma.asd,v 1.37 2007/07/12 18:52:14 edi Exp $ +;;; $Header: /usr/local/cvsrep/drakma/drakma.asd,v 1.38 2007/09/18 14:27:42 edi Exp $ hunk ./drakma.asd 37 -(defvar *drakma-version-string* "0.9.1" +(defvar *drakma-version-string* "0.10.0" hunk ./packages.lisp 2 -;;; $Header: /usr/local/cvsrep/drakma/packages.lisp,v 1.19 2007/06/25 10:25:15 edi Exp $ +;;; $Header: /usr/local/cvsrep/drakma/packages.lisp,v 1.20 2007/09/18 14:27:43 edi Exp $ hunk ./packages.lisp 42 + :cookie-http-only-p }