When a 401 or 407 response includes a Set-Cookie header, it is saved in the cookie jar. But after querying the user for auth credentials, the followup request re-uses the cookies from the original request rather than rereading them from the cookie jar, so the new cookie is not included. This breaks some sites that use cookies for custom auth schemes.
Created attachment 189795 [details] fix
Created attachment 189801 [details] patch with style fixes
Comment on attachment 189801 [details] patch with style fixes Clearing flags on attachment: 189801 Committed r143796: <http://trac.webkit.org/changeset/143796>
All reviewed patches have been landed. Closing bug.