When following a link that references an uppercase url no cookies are set. As an example load www.yahoo.com and notice the cookies that are set. Now create a small html page that has a link to http://www.Yahoo.com and notice that no cookies are set. This is a pretty big problem because a site will assume that the cookie was set correctly and probably depends on it somewhat. This can be seen in multiple sites. I also noticed that when you type a url it is automatically lowercased, but when you following the links they are not lowercased. <html> <head> <title>Cookie handling with Uppercase hostnames</title> </head> <body> <a href="http://www.yahoo.com">Yahoo with all lowercase</a><br/> <a href="http://www.Yahoo.com">Yahoo with a capital Y</a> </body> </html>
Created attachment 24321 [details] HTML Test Page HTML test page with both a lowercase only link and a mixed case link.
It now looks like when you follow a link with mixed case, if the site issues the cookie with the domain set to the same mixed case then safari ignores the cookie. I assume that safari is expecting a cookie with the domain set to all lowercase.
<rdar://problem/6296293>
(In reply to comment #3) Is this scheduled for a release anytime soon?
This issue is not in WebKit, but in closed source Apple frameworks it uses. It will be tracked and investigated by Apple internally, closing as INVALID per our process. You can get information about the progress on this issue by e-mailing devbugs@apple.com and citing the bug number, <rdar://problem/6296293>. Thank you for reporting it!