id	summary	reporter	owner	description	type	status	component	version	severity	resolution	keywords	cc	stage	has_patch	needs_docs	needs_tests	needs_better_patch	easy	ui_ux
16768	Wrong cookie set by CSRF middleware	ike@…	nobody	"Trying to setup jmeter for scalability testing I found following bug in CSRF Middleware

After few normal responses like this:

{{{
172.29.4.168 - - [08/Sep/2011:13:11:38 +0200] ""GET / HTTP/1.0"" 200 12003 ""csrftoken=0c85747298965a0fb54310eafa4da475"" ""-""
 ""Java/1.7.0""
}}}


Django returns this strange CSRF cookie:

{{{
172.29.4.168 - - [08/Sep/2011:13:31:46 +0200] ""GET / HTTP/1.0"" 200 12003 ""csrftoken=Set-Cookie: csrftoken=ab04081d4bd93d21c1a2c56599b30a04\x5C073 expires=Th
u\x5C054 06-Sep-2012 11:31:00 GMT\x5C073 Max-Age=31449600\x5C073 Path=/"" ""-"" ""Java/1.7.0""
}}}


"	Bug	closed	CSRF	1.3	Normal	invalid			Unreviewed	0	0	0	0	0	0