#62: Add more precise domain check

andrewkharook · andrewkharook · commit 8a2dd2b6068c · 2017-03-22T19:24:17.000+02:00
diff --git a/src/Plugin/CookiePlugin.php b/src/Plugin/CookiePlugin.php
@@ -69,7 +69,11 @@ public function handleRequest(RequestInterface $request, callable $next, callabl
                     }
 
                     // Restrict setting cookie from another domain
-                    if (false === strpos($request->getUri()->getHost(), $cookie->getDomain())) {
+                    if (false === strpos(
+                            '.'.$request->getUri()->getHost(),
+                            '.'.$cookie->getDomain()
+                        )
+                    ) {
                         continue;
                     }
 

Original file line number	Diff line number	Diff line change
`@@ -69,7 +69,11 @@ public function handleRequest(RequestInterface $request, callable $next, callabl`
`69`	`69`	`}`
`70`	`70`
`71`	`71`	`// Restrict setting cookie from another domain`
`72`		`- if (false === strpos($request->getUri()->getHost(), $cookie->getDomain())) {`
	`72`	`+ if (false === strpos(`
	`73`	`+ '.'.$request->getUri()->getHost(),`
	`74`	`+ '.'.$cookie->getDomain()`
	`75`	`+ )`
	`76`	`+ ) {`
`73`	`77`	`continue;`
`74`	`78`	`}`
`75`	`79`