I want to use the new cookie-prefixes, which are not yet standardized by the IETF. These are __Secure- and __Host-.
So let's e.g. set this cookie (here the header returned by the server):
Set-Cookie: "__Host-apple=yummy; Secure; HttpOnly; Path=/"
I want to access this cookie now in nginx with the $cookie- variable. So for testing I use the echo module to show me the value of the cookie:
location = /wannaeat/ {
echo $cookie___Host-apple;
}
However nginx always shows me -apple. It seems to use the hyphen (-) to split the variable.
Because when I e.g. name the cookie __Host_apple (and the nginx variable $cookie___Host_apple) nginx shows me the value correctly.
I know I could probably use $http_cookie and use a regular expression to find the correct cookie, but this is not possible as I want to map the cookie value.
First of all,
mapdoes, in fact, support matching on regular expressions:(Thus you should probably be good to go!)
However, for the sake of discussion and commentary, since what you're attempting to use is not a standard yet, you better go to their mailing lists or whatnot, and tell them that what they're proposing to do is a really bad idea.
Just for the sake of it, I went to the Cookie Manager in my browser, to make a look at the use of
_the underscore versus-the shortest dash. The underscore is heavily used by at least 90% of sites/cookies, whereas dash usage within cookies is probably way below 5%.The reason why
-is not valid in variable names is very straightforward and is as old as day -- because the symbol is often used in pretty much all programming languages in place of the minus sign (dash, minus, mdash: -−—). In turn, as perre_format(7)andpcrepattern(3), this scenario is also part of the widely used regular expression implementations, where an underscore is always considered to be a part of a word, whereas a dash symbol is not.I'd imagine the same issue will repeat itself in many other languages as well as with nginx.conf.