#31 Invalid cookie values for persistent logins

[lG_SXL]

URLEncoder.encode() and URLDecoder.decode() should be used in encryptText/decryptText methods of DefaultPersistentLoginManager class in order to avoid cookie creation error due to invalid characters (in my case, a newline character appeared in an encrypted value of a long string containing several "/" characters).

[Nobody/Anonymous]

Logged In: NO

That doesn't sound right... the encryptText method uses base64 encoding to encode the cipher text, which should never include any newlines. Besides, cookie values aren't interpreted using URL encoding of any kind under normal circumstances. Why add this?