mirror of
https://github.com/appwrite/appwrite.git
synced 2026-05-26 13:51:13 +00:00
loks0n
84dc921d41
utopia-php/framework was the old name for utopia-php/http. Replacing it with utopia-php/http 0.34.19 which fixes getCookie() to use Swoole's native cookie store (populated via php_raw_url_decode) instead of re-parsing the raw Cookie header without URL-decoding. This fixes a production auth bug where Swoole's setcookie() URL-encodes base64 session values (+ → %2B, / → %2F, = → %3D) in Set-Cookie headers. RFC 6265 clients (Dart, Swift) reflect these verbatim; the old getCookie() returned %2B/%2F/%3D to base64_decode() which produced corrupted output, rejecting valid sessions. Also updates the e2e test client to use cURL's built-in RFC 6265 cookie engine (CURLOPT_COOKIEFILE) instead of parse_str() which silently URL-decoded values, masking the bug in tests. Adds a cookie roundtrip assertion to testCreateAccountSession. Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>