added cookie parsing in http headers.

it is to parse the cookie header from the browser.

e.g., once the user is authenticated (/magic/login) it is handed a
token - a site-wide cookie.  the browser then hands it back on every
request.