Bug 316140

Summary:	[Site Isolation] authentication-after-redirect-stores-wrong-credentials.html test reports wrong frame load callbacks
Product:	WebKit	Reporter:	roberto_rodriguez2
Component:	New Bugs	Assignee:	roberto_rodriguez2
Status:	RESOLVED FIXED
Severity:	Normal	CC:	webkit-bug-importer
Priority:	P2	Keywords:	InRadar
Version:	WebKit Nightly Build
Hardware:	Unspecified
OS:	Unspecified

roberto_rodriguez2

Reported 2026-06-02 15:47:54 PDT

When site isolation is enabled, the iframe in this test navigates across site boundaries (localhost and 127.0.0.1) multiple times. Each cross-site navigation causes a process swap, which routes the load through different code paths that produce a small number of callbacks unique to each configuration. The core behavior being tested, that HTTP credentials stored for one origin are not sent to a different origin, works correctly however.

Attachments
Add attachment proposed patch, testcase, etc.

Radar WebKit Bug Importer

Comment 1 2026-06-02 15:48:00 PDT

<rdar://problem/178563457>

roberto_rodriguez2

Comment 2 2026-06-02 16:02:08 PDT

Pull request: https://github.com/WebKit/WebKit/pull/66302

EWS

Comment 3 2026-06-03 10:45:38 PDT

Committed 314477@main (07e272b41843): <https://commits.webkit.org/314477@main> Reviewed commits have been landed. Closing PR #66302 and removing active labels.

Note You need to log in before you can comment on or make changes to this bug.