Fixed bug that the cookie value cannot be deleted when set "". (#7421)

albertcht · web-flow · commit b5f8dbd03578 · 2025-06-30T09:39:01.000+08:00
diff --git a/src/ResponseEmitter.php b/src/ResponseEmitter.php
@@ -68,7 +68,7 @@ protected function buildSwooleResponse(Response $swooleResponse, ResponseInterfa
                             'isRaw', 'getValue', 'getName', 'getExpiresTime', 'getPath', 'getDomain', 'isSecure', 'isHttpOnly', 'getSameSite',
                         ])) {
                             $value = $cookie->isRaw() ? $cookie->getValue() : rawurlencode($cookie->getValue());
-                            $swooleResponse->rawcookie($cookie->getName(), $value, $cookie->getExpiresTime(), $cookie->getPath(), $cookie->getDomain(), $cookie->isSecure(), $cookie->isHttpOnly(), (string) $cookie->getSameSite());
+                            $swooleResponse->rawcookie($cookie->getName(), $value === '' ? 'deleted' : $value, $cookie->getExpiresTime(), $cookie->getPath(), $cookie->getDomain(), $cookie->isSecure(), $cookie->isHttpOnly(), (string) $cookie->getSameSite());
                         }
                     }
                 }
diff --git a/tests/ResponseTest.php b/tests/ResponseTest.php
@@ -241,6 +241,7 @@ public function testCookiesAndHeaders()
         $id = uniqid();
         $cookie1 = new Cookie('Name', 'Hyperf');
         $cookie2 = new Cookie('Request-Id', $id);
+        $cookie3 = new Cookie('Cleared', '');
         $swooleResponse->shouldReceive('status')->with(200, 'OK')->andReturnUsing(function ($code) {
             $this->assertSame($code, 200);
             return true;
@@ -251,17 +252,17 @@ public function testCookiesAndHeaders()
             }
             return true;
         });
-        $swooleResponse->shouldReceive('rawcookie')->withAnyArgs()->twice()->andReturnUsing(function ($name, $value, ...$args) use ($id) {
-            $this->assertTrue($name == 'Name' || $name == 'Request-Id');
-            $this->assertTrue($value == 'Hyperf' || $value == $id);
+        $swooleResponse->shouldReceive('rawcookie')->withAnyArgs()->times(3)->andReturnUsing(function ($name, $value, ...$args) use ($id) {
+            $this->assertTrue(in_array($name, ['Name', 'Request-Id', 'Cleared']));
+            $this->assertTrue(in_array($value, ['Hyperf', $id, 'deleted']));
             return true;
         });
         $swooleResponse->shouldReceive('end')->once()->andReturn(true);
 
         Context::set(PsrResponseInterface::class, $psrResponse = new \Hyperf\HttpMessage\Server\Response());
 
         $response = new Response();
-        $response = $response->withCookie($cookie1)->withCookie($cookie2)->withHeader('X-Token', 'xxx')->withStatus(200);
+        $response = $response->withCookie($cookie1)->withCookie($cookie2)->withCookie($cookie3)->withHeader('X-Token', 'xxx')->withStatus(200);
 
         $this->assertInstanceOf(Response::class, $response);
         $this->assertInstanceOf(ResponseInterface::class, $response);

Original file line number	Diff line number	Diff line change
`@@ -68,7 +68,7 @@ protected function buildSwooleResponse(Response $swooleResponse, ResponseInterfa`
`68`	`68`	`'isRaw', 'getValue', 'getName', 'getExpiresTime', 'getPath', 'getDomain', 'isSecure', 'isHttpOnly', 'getSameSite',`
`69`	`69`	`])) {`
`70`	`70`	`$value = $cookie->isRaw() ? $cookie->getValue() : rawurlencode($cookie->getValue());`
`71`		`- $swooleResponse->rawcookie($cookie->getName(), $value, $cookie->getExpiresTime(), $cookie->getPath(), $cookie->getDomain(), $cookie->isSecure(), $cookie->isHttpOnly(), (string) $cookie->getSameSite());`
	`71`	`+ $swooleResponse->rawcookie($cookie->getName(), $value === '' ? 'deleted' : $value, $cookie->getExpiresTime(), $cookie->getPath(), $cookie->getDomain(), $cookie->isSecure(), $cookie->isHttpOnly(), (string) $cookie->getSameSite());`
`72`	`72`	`}`
`73`	`73`	`}`
`74`	`74`	`}`