19579 – Third-party cookies blocked for non .com sites

Bug 19579 - Third-party cookies blocked for non .com sites

Summary: Third-party cookies blocked for non .com sites

Status:	RESOLVED INVALID

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	New Bugs (show other bugs)
Version:	528+ (Nightly build)
Hardware:	All OS X 10.5

Importance:	P2 Major
Assignee:	Nobody

URL:
Keywords:

Depends on:
Blocks:

Reported:	2008-06-16 08:23 PDT by Max Smolev
Modified:	2008-06-16 13:38 PDT (History)
CC List:	2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Max Smolev 2008-06-16 08:23:10 PDT

By default the option "accept cookies only from sites you navigate to" is selected. However, there seems to be an issue with handling sites that are not .com. Problem happens when an iframe from subdomain tries to set a cookie.
i.e:
http://www.somesite.com/page.html has an iframe with an address http://engine.somesite.com/iframe.html and tries to set a cookie for domain engine.somesite.com
This will work correctly. But if instead of ".com" the site is in ".ca" or ".nl" or anything else, the cookie from http://engine.somesite.ca/iframe.html will be rejected.

This issue is present in Safari on PC and Mac platforms.

Comment 1 Alexey Proskuryakov 2008-06-16 13:38:58 PDT

This is not an issue in open source WebKit, so it needs to be filed to <htto://bugreport.apple.com> for Apple engineers working on the closed source system libraries responsible for this to take a look. Closing as INVALID per our process.