ANTSLOAD 16 - Invalid Name Value Pair HTTPOnly on 2.0 FW

Brian DonahueBrian Donahue Posts: 6,590 New member
edited March 1, 2006 5:40AM in Knowledge Base
  • Date: 21-JUNE-2005
  • Versions: 1.5/1.6 testing Framework 2.0 ASP .NET web applications

.NET Framework 2.0 has introduced a new potential value to ASP .NET cookies called HttpOnly. This is sent by servers that use ASP .NET 2.0 as part of forms authentication as a security feature preventing cross-server security issues.

The HttpOnly cookie will cause ANTS Load tests to fail with an invalid Name/Value pair exception regardless of the Framework version that the ANTS Load software is running on. It depends strictly on the version of the Framework installed on the web server.

If this occurs, please contact support (at) red-gate.com for a patch to the ANTS Load software.

Comments

  • Brian DonahueBrian Donahue Posts: 6,590 New member
    ANTS Load 1.7 has corrected this issue. HttpOnly cookies are now handled in a way that will not throw an error.

    Note, multiple cookies one one line present a problem still when used in conjunction with HttpOnly, for example:

    Set-Cookie: ASP.Net_SessionId=abecef123; Path=/; HttpOnly,sesInfo=123ABC

    Will still cause problems. We are working for a fix for this issue currently.
  • Brian DonahueBrian Donahue Posts: 6,590 New member
    Please contact [email protected] if you need the updated ANTS Load version to fix the problem described above.
Sign In or Register to comment.