Skip to content

Comments

Treat Max-Age<=0 as immediate expiry (RFC 6265)#805

Merged
arturobernalg merged 1 commit intoapache:masterfrom
arturobernalg:max-age
Feb 20, 2026
Merged

Treat Max-Age<=0 as immediate expiry (RFC 6265)#805
arturobernalg merged 1 commit intoapache:masterfrom
arturobernalg:max-age

Conversation

@arturobernalg
Copy link
Member

Align strict Max-Age parsing with RFC 6265 user-agent processing.
Non-positive delta-seconds now expire cookies immediately instead of being rejected as malformed.
@arturobernalg arturobernalg requested a review from ok2c February 19, 2026 13:49
@arturobernalg arturobernalg merged commit ede07e6 into apache:master Feb 20, 2026
10 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Labels

None yet

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants