2010/4/7 Andrew G. West westand@cis.upenn.edu:
This security upgrade has caused issue with my application:
The Bugzilla page indicates that the cookie is returned with the first login request. I never used/stored this HTTP cookie, but instead built the cookie using the "enwiki_session=","enwikiUserID=", and other response fields.
These fields are no longer present in the first HTTP response (or the second -- which fails due to lack of cookie). Is this functionality we should expect to return?
Ouch. That's not intended, as you absolutely do need these fields to build your cookies when you're using the DIY method. I'll fix this ASAP.
Roan Kattouw (Catrope)