180922 – Intelligent Tracking Prevention removes cookie in a first-party context

RESOLVED WORKSFORME 180922

Intelligent Tracking Prevention removes cookie in a first-party context

https://bugs.webkit.org/show_bug.cgi?id=180922

Summary Intelligent Tracking Prevention removes cookie in a first-party context

jaffadog

Reported 2017-12-17 18:32:08 PST

Safari 11.0.1 on MacOS 10.13.1. Issue also reproducible on iOS devices. When I visit https://mywindy.com/ I see the site issues an auth_token session cookie in the response to the first request. However, Safari does not submit that cookie in subsequent requests to https://mywindy.com/ leading to 401s. The issue manifests when "prevent cross-site tracking" is checked, and does not manifest when that option is unchecked. This would seem to be a simple first-party context situation. Regards, Jeremy

Attachments
Add attachment proposed patch, testcase, etc.

jaffadog

Comment 1 2017-12-17 18:43:42 PST

investigating further to properly characterize the issue...

Note You need to log in before you can comment on or make changes to this bug.

Status RESOLVED

Resolution WORKSFORME

Priority P2

Severity Normal

Classification Unclassified

Version Safari 11

Hardware Mac

OS macOS 10.13

Product WebKit

Component WebKit Misc.

Assignee

Nobody

Reported

2017-12-17 18:32 PST

Modified

2017-12-17 18:43 PST History

CC List

0 users

URL

Keywords

Depends on

Blocks