140412 2015-01-13 14:14:50 -0800 WKWebView should provide an API to allow canceling requests based on SSL certificates information before cookies are sent to the server. 2015-06-15 12:34:04 -0700 1 1 1 Unclassified WebKit WebKit2 528+ (Nightly build) iPhone / iPad All NEW InRadar P2 Normal --- 1 eugenebut webkit-unassigned benjamin webkit-bug-importer oldest_to_newest 1060932 0 eugenebut 2015-01-13 14:14:50 -0800 This API is necessary if host app wants to implement certificate blacklisting feature. webView:didReceiveAuthenticationChallenge:completionHandler: is not suitable for that. It provides all required information but it's called after the cookies were sent to the server and if host app believes that certificate is compromised it's too late to cancel the request as cookies were gone. 1060941 1 eugenebut 2015-01-13 14:26:31 -0800 Also reported to Apple Radar: rdar://19462148 1102007 2 benjamin 2015-06-15 12:33:47 -0700 (In reply to comment #1) > Also reported to Apple Radar: rdar://19462148 The radar does not match this bug report. 1102008 3 webkit-bug-importer 2015-06-15 12:34:04 -0700 <rdar://problem/21387703>