[GH-ISSUE #783] Cookies not parsed correctly on the Cookies tab #777

New issue

Closed

opened 2026-03-03 19:21:48 +03:00 by kerem · 12 comments

kerem commented 2026-03-03 19:21:48 +03:00

Owner

Copy link

Originally created by @pbartolome on GitHub (Feb 11, 2021).
Original GitHub issue: https://github.com/ProxymanApp/Proxyman/issues/783

Originally assigned to: @NghiaTranUIT on GitHub.

Proxyman version? (Ex. Proxyman 1.4.3)

Version 2.17.0 (21700)

macOS Version? (Ex. mac 10.14)

10.15.7 (19H114)

Steps to reproduce

Inspect a request with a cookie value with some specific characters (E.g "==~"). In the Cookie's tab the cookie value is not parsed properly and discards everything after "==~"

Screenshots (optional)

Originally created by @pbartolome on GitHub (Feb 11, 2021). Original GitHub issue: https://github.com/ProxymanApp/Proxyman/issues/783 Originally assigned to: @NghiaTranUIT on GitHub. ### Proxyman version? (Ex. Proxyman 1.4.3) Version 2.17.0 (21700) ### macOS Version? (Ex. mac 10.14) 10.15.7 (19H114) ### Steps to reproduce Inspect a request with a cookie value with some specific characters (E.g "==\~"). In the Cookie's tab the cookie value is not parsed properly and discards everything after "==~" ### Screenshots (optional)  

kerem 2026-03-03 19:21:48 +03:00

• closed this issue
• added the
  bug
  ✅ Done
  labels

kerem commented 2026-03-03 19:21:49 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Feb 11, 2021):

Thanks for the screenshot. I will fix it and send you a hotfix soon 👍

<!-- gh-comment-id:777531492 --> @NghiaTranUIT commented on GitHub (Feb 11, 2021): Thanks for the screenshot. I will fix it and send you a hotfix soon 👍

kerem commented 2026-03-03 19:21:49 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Feb 12, 2021):

@pbartolome Please check this beta build: https://proxyman.s3.us-east-2.amazonaws.com/beta/Proxyman_2.17.0_Fix_Cookie_Parser.dmg

It fixes the cookie parser 😄

<!-- gh-comment-id:778064293 --> @NghiaTranUIT commented on GitHub (Feb 12, 2021): @pbartolome Please check this beta build: https://proxyman.s3.us-east-2.amazonaws.com/beta/Proxyman_2.17.0_Fix_Cookie_Parser.dmg It fixes the cookie parser 😄 <img width="803" alt="Screen Shot 2021-02-12 at 15 17 41" src="https://user-images.githubusercontent.com/5878421/107747519-1dce5100-6d4a-11eb-90c3-45a0598f6afd.png"> <img width="803" alt="Screen Shot 2021-02-12 at 15 17 36" src="https://user-images.githubusercontent.com/5878421/107747526-2030ab00-6d4a-11eb-9454-abf4632cd8cf.png">

kerem commented 2026-03-03 19:21:49 +03:00

Author

Owner

Copy link

@pbartolome commented on GitHub (Feb 12, 2021):

@NghiaTranUIT Great, that was a quick fix!, it works now.
Just a suggestion, maybe the response should say "Set-Cookie" instead of "Cookies", It will be weird to have a "Cookie" header on a response ;)

Thanks!

<!-- gh-comment-id:778078005 --> @pbartolome commented on GitHub (Feb 12, 2021): @NghiaTranUIT Great, that was a quick fix!, it works now. Just a suggestion, maybe the response should say "Set-Cookie" instead of "Cookies", It will be weird to have a "Cookie" header on a response ;) Thanks!

kerem commented 2026-03-03 19:21:50 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Feb 12, 2021):

Ah right. Make sense. I will change the title 👍

<!-- gh-comment-id:778078593 --> @NghiaTranUIT commented on GitHub (Feb 12, 2021): Ah right. Make sense. I will change the title 👍

kerem commented 2026-03-03 19:21:50 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Feb 12, 2021):

It's fixed in this beta build: https://proxyman.s3.us-east-2.amazonaws.com/beta/Proxyman_2.17.0_Better_UI_For_Helper_Tool.dmg

Thank you so much for the bug report 🙇

<!-- gh-comment-id:778218505 --> @NghiaTranUIT commented on GitHub (Feb 12, 2021): It's fixed in this beta build: https://proxyman.s3.us-east-2.amazonaws.com/beta/Proxyman_2.17.0_Better_UI_For_Helper_Tool.dmg Thank you so much for the bug report 🙇

kerem commented 2026-03-03 19:21:50 +03:00

Author

Owner

Copy link

@pbartolome commented on GitHub (Feb 15, 2021):

In the response, the Set-Cookie is still note quite correct. E.g the header response of https://samesite-sandbox.glitch.me/:

HTTP/1.1 304 Not Modified
Date: Mon, 15 Feb 2021 16:13:42 GMT
Connection: keep-alive
x-powered-by: Express
strict-transport-security: max-age=63072000; inlcudeSubdomains; preload
referrer-policy: strict-origin-when-cross-origin
set-cookie: ck03=vl03; SameSite=InvalidValue
set-cookie: ck00=vl00; Path=/
set-cookie: ck01=vl01; Path=/; Secure; SameSite=None
set-cookie: ck02=vl02; Path=/; SameSite=None
set-cookie: ck04=vl04; Path=/; SameSite=Lax
set-cookie: ck05=vl05; Path=/; SameSite=Strict
accept-ranges: bytes
cache-control: public, max-age=0
last-modified: Thu, 26 Mar 2020 12:31:57 GMT
etag: W/"28fe-17116d3e248"
Content-Length: 0

Proxyman is showing a list of cookies that are really cookie attributes:

ck03: vl03
SameSite: InvalidValue
ck00: vl00
Path: /
ck01: vl01
Path: /
Secure: 
SameSite: None
ck02: vl02
Path: /
SameSite: None
ck04: vl04
Path: /
SameSite: Lax
ck05: vl05
Path: /
SameSite: Strict

Splitting cookies with ; won't work to parse the Set-Cookie header. In that case a different strategy is needed

https://tools.ietf.org/html/rfc6265#section-4.1
https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie

<!-- gh-comment-id:779324796 --> @pbartolome commented on GitHub (Feb 15, 2021): In the response, the Set-Cookie is still note quite correct. E.g the header response of [https://samesite-sandbox.glitch.me/](https://samesite-sandbox.glitch.me/): ``` HTTP/1.1 304 Not Modified Date: Mon, 15 Feb 2021 16:13:42 GMT Connection: keep-alive x-powered-by: Express strict-transport-security: max-age=63072000; inlcudeSubdomains; preload referrer-policy: strict-origin-when-cross-origin set-cookie: ck03=vl03; SameSite=InvalidValue set-cookie: ck00=vl00; Path=/ set-cookie: ck01=vl01; Path=/; Secure; SameSite=None set-cookie: ck02=vl02; Path=/; SameSite=None set-cookie: ck04=vl04; Path=/; SameSite=Lax set-cookie: ck05=vl05; Path=/; SameSite=Strict accept-ranges: bytes cache-control: public, max-age=0 last-modified: Thu, 26 Mar 2020 12:31:57 GMT etag: W/"28fe-17116d3e248" Content-Length: 0 ``` Proxyman is showing a list of cookies that are really cookie attributes: ``` ck03: vl03 SameSite: InvalidValue ck00: vl00 Path: / ck01: vl01 Path: / Secure: SameSite: None ck02: vl02 Path: / SameSite: None ck04: vl04 Path: / SameSite: Lax ck05: vl05 Path: / SameSite: Strict ``` Splitting cookies with `;` won't work to parse the Set-Cookie header. In that case a different strategy is needed https://tools.ietf.org/html/rfc6265#section-4.1 https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie

kerem commented 2026-03-03 19:21:50 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Feb 16, 2021):

Look like I have to implement the Set-Cookie TableView like Safari Inspector

<!-- gh-comment-id:779539527 --> @NghiaTranUIT commented on GitHub (Feb 16, 2021): Look like I have to implement the Set-Cookie TableView like Safari Inspector <img width="1421" alt="Screen Shot 2021-02-16 at 09 20 23" src="https://user-images.githubusercontent.com/5878421/108010802-4f8c3400-7038-11eb-8597-efd02bd888ea.png">

kerem commented 2026-03-03 19:21:50 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Feb 16, 2021):

At the first glance, I thought that I would like to implement like the following design, which you can collapse/expand their attributes for each Key-Value

However, we have to sacrifice the multiple-line and I don't think it's a good deal, since it's really difficult to copy a text if it's too long (has ...)

Let try my improvised build 😄 https://proxyman.s3.us-east-2.amazonaws.com/beta/Proxyman_2.17.0_Better_UI_Set-Cookie.dmg

By this way, the multiple line is remained and it's easier to copy

<!-- gh-comment-id:779575850 --> @NghiaTranUIT commented on GitHub (Feb 16, 2021): At the first glance, I thought that I would like to implement like the following design, which you can collapse/expand their attributes for each Key-Value <img width="1075" alt="Screen Shot 2021-02-16 at 10 09 12" src="https://user-images.githubusercontent.com/5878421/108014112-c416a100-703f-11eb-9796-501811088ccf.png"> <img width="1408" alt="Screen Shot 2021-02-16 at 10 14 23" src="https://user-images.githubusercontent.com/5878421/108014103-bf51ed00-703f-11eb-97ec-91ccb3e119f1.png"> However, we have to **sacrifice** the multiple-line and I don't think it's a good deal, since it's really difficult to copy a text if it's too long (has ...) Let try my improvised build 😄 https://proxyman.s3.us-east-2.amazonaws.com/beta/Proxyman_2.17.0_Better_UI_Set-Cookie.dmg By this way, the multiple line is remained and it's easier to copy <img width="1512" alt="Screen_Shot_2021-02-16_at_11_19_44" src="https://user-images.githubusercontent.com/5878421/108018678-fa0d5280-704a-11eb-9d63-807be741d6ec.png">

kerem commented 2026-03-03 19:21:50 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Feb 16, 2021):

@pbartolome let me know how you feels. Thanks 🙌

<!-- gh-comment-id:779575966 --> @NghiaTranUIT commented on GitHub (Feb 16, 2021): @pbartolome let me know how you feels. Thanks 🙌

kerem commented 2026-03-03 19:21:50 +03:00

Author

Owner

Copy link

@pbartolome commented on GitHub (Feb 16, 2021):

much better, thanks for acting so fast to the reported feedback!

It seems that the Set-Cookie tab in the 'breakpoint' view has some bugs

• Deleting a row doesn't do anything
• Key/Value change is not reflected in the response
• Adding a new key/value doesn't show up in the response

<!-- gh-comment-id:779684707 --> @pbartolome commented on GitHub (Feb 16, 2021): much better, thanks for acting so fast to the reported feedback! It seems that the Set-Cookie tab in the 'breakpoint' view has some bugs  - Deleting a row doesn't do anything - Key/Value change is not reflected in the response - Adding a new key/value doesn't show up in the response

kerem commented 2026-03-03 19:21:50 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Feb 16, 2021):

Thanks. It's a bug. I suppose that I should disable the Set-Cookie in the Response. So, you only can edit the SetCookie Value from the Header Tab.

The reason why I choose this way because it's really difficult to implement this feature. Maybe I will improve it later

<!-- gh-comment-id:779686627 --> @NghiaTranUIT commented on GitHub (Feb 16, 2021): Thanks. It's a bug. I suppose that I should disable the Set-Cookie in the Response. So, you only can edit the SetCookie Value from the Header Tab. The reason why I choose this way because it's really difficult to implement this feature. Maybe I will improve it later

kerem commented 2026-03-03 19:21:50 +03:00

Author

Owner

Copy link

@NghiaTranUIT commented on GitHub (Feb 17, 2021):

I fixed this issue here: https://proxyman.s3.us-east-2.amazonaws.com/beta/Proxyman_2.17.0_Fix_Set_Cookie_Breakpoint_And_Missing_Tabs_In_Compose.dmg

Thank you for raising the bug 😄 👍

<!-- gh-comment-id:780286250 --> @NghiaTranUIT commented on GitHub (Feb 17, 2021): I fixed this issue here: https://proxyman.s3.us-east-2.amazonaws.com/beta/Proxyman_2.17.0_Fix_Set_Cookie_Breakpoint_And_Missing_Tabs_In_Compose.dmg Thank you for raising the bug 😄 👍

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

master

6.9.0

6.8.0

6.7.0

6.6.0

6.5.0

6.4.0

6.3.0

6.2.0

6.1.0

6.0.2

6.0.0

6.0.1

5.25.0

5.24.0

5.23.0

5.23.1

5.22.0

5.20.0

5.21.0

5.19.0

5.18.0

5.17.0

5.16.0

5.15.0

5.14.0

5.12.2

5.12.1

5.12.0

5.11.0

5.10.0

5.8.0

5.9.0

5.7.0

5.6.1

5.6.0

5.5.0

5.4.0

5.2.0

5.3.0

5.1.1

5.0.0

4.16.0

4.15.0

4.14.0

4.13.0

4.12.0

4.11.0

4.10.0

4.9.1

4.9.0

4.8.2

4.8.1

4.8.0

4.7.1

4.7.0

4.6.1

4.6.0

4.5.0

4.4.0

4.3.1

4.3.0

4.2.1

4.2.0

4.1.0

4.0.0

3.15.0

3.14.0

3.13.0

3.12.0

3.11.0

3.10.0

3.9.0

3.8.0

3.7.0

3.6.2

3.6.1

3.6.0

3.5.2

3.5.1

3.5.0

3.4.0

3.3.0

3.2.0

3.1.0

3.0.0

2.35.4

2.35.3

2.35.2

2.35.1

2.35.0

2.34.1

2.34.0

2.33.0

2.32.1

2.32.0

2.31.0

2.30.0

2.29.0

2.28.0

2.27.0

2.26.0

2.25.0

2.24.0

2.23.0

2.22.0

2.21.1

2.21.0

2.20.0

2.19.0

2.18.0

2.17.0

2.16.1

2.16.0

2.15.2

2.15.1

2.15.0

2.14.2

2.14.1

2.14.0

2.13.0

2.12.0

2.11.1

2.11.0

2.10.0

2.9.1

2.9.0

2.8.0

2.7.0

2.6.0

2.5.3

2.5.2

2.5.1

2.5.0

2.4.2

2.4.1

2.4.0

2.3.0

2.2.0

2.1.1

2.1.0

2.0.1

2.0.0

1.24.0

1.23.0

1.22.0

1.21.0

1.20.0

1.19.0

1.18.1

1.18.0

1.17.1

1.17.0

1.16.0

1.15.0

1.14.1

1.14.0

1.13.1

1.13.0

1.12.0

1.11.0

1.10.0

1.9.3

1.9.2

1.9.1

1.9.0

1.8.0

1.7.2

1.7.1

1.7.0

1.6.2

1.6.1

1.6.0

1.5.1

1.5.0

1.4.7

1.4.6

1.4.5.1

1.4.5

1.4.4.1

1.4.4

1.4.3

1.4.2

1.4.1.1

1.4.1

1.4

1.3.9

1.3.8

1.3.7

1.3.6

1.3.5

1.3.4.3

1.3.4.2

1.3.4.1

1.3.4

1.3.3

1.3.2

1.3.1

1.3

1.2

1.1.2

1.1.1

1.1

1.0.3

1.0.2

1.0

0.8.1

0.8

0.7

0.6

0.5.1

0.5

v0.4.1

Labels

Clear labels   

Discussion

  

Feature request

  

In Progress...

  

Plugins

  

Waiting response

  

Windows

  

Windows

  

bug

  

duplicate

  

enhancement

  

feature

  

good first issue

  

iOS

  

macOS 10.11

  

question

  

wontfix

  

✅ Done

No labels

Discussion

Feature request

In Progress...

Plugins

Waiting response

Windows

Windows

bug

duplicate

enhancement

feature

good first issue

iOS

macOS 10.11

question

wontfix

✅ Done

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

starred/Proxyman#777

No description provided.