$res->called_ok( "cookies", "response cookie was set when sessionid changed" );
is_deeply(
\%res_cookies,
- { session => { value => $sessionid, expires => 123 } },
+ { session => { value => $sessionid, httponly => 1, expires => 123 } },
"cookie was set correctly"
);
can_ok( $m, "cookie_is_rejecting" );
%req_cookies = ( path => '/foo' );
-$req->set_always( path => '/' );
+$req->set_always( path => '' );
ok( $cxt->cookie_is_rejecting(\%req_cookies), "cookie is rejecting" );
-$req->set_always( path => '/foo/bar' );
+$req->set_always( path => 'foo/bar' );
ok( !$cxt->cookie_is_rejecting(\%req_cookies), "cookie is not rejecting" );