As the original poster, let me clarify why this is a problem. It has nothing to do with specs or free quoting. The problem is cookies are used across technologies: My Zope set cookies will be read by javascript and/or apache servers and god-knows-what else. Ramming quotes around them (indeed, any magic wrapping) makes zope cookies incompatible with 3rd party technologies. Zope might like to pretend it lives in a vacuum but my cookies certainly don't.
There is a work around at least. It is also too late to fix this as it would break existing cookies. I feel the existing behavior probably should remain but it needs to be documented and the setHeader workaround should be mentioned in the same place.
As the original poster, let me clarify why this is a problem. It has nothing to do with specs or free quoting. The problem is cookies are used across technologies: My Zope set cookies will be read by javascript and/or apache servers and god-knows-what else. Ramming quotes around them (indeed, any magic wrapping) makes zope cookies incompatible with 3rd party technologies. Zope might like to pretend it lives in a vacuum but my cookies certainly don't.
There is a work around at least. It is also too late to fix this as it would break existing cookies. I feel the existing behavior probably should remain but it needs to be documented and the setHeader workaround should be mentioned in the same place.