NEW 190358
REGRESSION (Safari 12): Recovering tab from Force Quit clears response and request headers 
https://bugs.webkit.org/show_bug.cgi?id=190358
Summary REGRESSION (Safari 12): Recovering tab from Force Quit clears response and re...
mike.smart+webkit-bugzilla
Reported 2018-10-08 10:14:37 PDT
Created attachment 351787 [details] Network request of a document restored by Safari When restoring Safari (latest on iOS, OSX + technology preview) from a POST request, after a Force Quit (or on iOS closing via the app switcher) causes all response data (headers, status, source) to be missing. Steps to reproduce: 1. Log into https://bugs.webkit.org 2. Force Quit Safari 3. Open safari Expected behaviour: New headers are sent/returned from the document request Actual behaviour: This is missing Impact: All sites that rely on cookies for security (CSRF, encryption token, etc.) would not have this present and the user needs to navigate away and come back, a refresh does not fix this. It's entirely possible this is a new security feature, but it's breaking existing behaviour.
Attachments
Network request of a document restored by Safari (343.51 KB, image/png)
2018-10-08 10:14 PDT, mike.smart+webkit-bugzilla 		no flags
Details
View All Add attachment proposed patch, testcase, etc.
Alexey Proskuryakov
Comment 1 2018-10-10 16:48:01 PDT
Could you please clarify if this is a new behavior (regression) in Safari 12?
Radar WebKit Bug Importer
Comment 2 2018-10-10 16:48:19 PDT
<rdar://problem/45178040>
mike.smart+webkit-bugzilla
Comment 3 2018-10-10 22:49:02 PDT
Yes, this is new for Safari 12
mike.smart+webkit-bugzilla
Comment 4 2018-11-02 09:55:02 PDT
As an update, I am also able to trigger the same behaviour by opening a page in a webview, e.g. in a link from the Gmail app.
mike.smart+webkit-bugzilla
Comment 5 2018-11-02 09:56:10 PDT
The effect of this is that the page is unable to access any cookies sent from the document.
Note You need to log in before you can comment on or make changes to this bug.