SecureHeaders middleware erases all cookies in Rack 3 due to \n joining

# Bugs

SecureHeaders is not compatible with this change from [Rack 3](https://github.com/rack/rack/blob/main/UPGRADE-GUIDE.md#multiple-response-header-values-are-encoded-using-an-array) as SH uses `\n` encoded cookies in [flag_cookies!](https://github.com/github/secure_headers/blob/main/lib/secure_headers/middleware.rb#L29):

> Response header values can be an Array to handle multiple values (and no longer supports \n encoded headers).

Rack will no longer transform this back into an array for you, and that joined string with `\n` gets all the way to [Puma::Request#str_headers](https://github.com/puma/puma/blob/master/lib/puma/request.rb#L649C14-L649C26) at which point it ignores it due to it being an illegal value.

### Expected outcome

Describe what you expected to happen 

1. I set multiple cookies
1. Those cookies are included in the response

### Actual outcome

1. The response written to the socket does not include any cookies set before SH middleware gets them.




Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

SecureHeaders middleware erases all cookies in Rack 3 due to \n joining #514

Bugs

Expected outcome

Actual outcome

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

SecureHeaders middleware erases all cookies in Rack 3 due to \n joining #514

Description

Bugs

Expected outcome

Actual outcome

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions