[Webkit-unassigned] [Bug 109533] New: CORS requests don't cache authentication

bugzilla-daemon at webkit.org bugzilla-daemon at webkit.org
Mon Feb 11 18:35:36 PST 2013


https://bugs.webkit.org/show_bug.cgi?id=109533

           Summary: CORS requests don't cache authentication
           Product: WebKit
           Version: 528+ (Nightly build)
          Platform: All
        OS/Version: All
            Status: UNCONFIRMED
          Severity: Normal
          Priority: P2
         Component: WebCore Misc.
        AssignedTo: webkit-unassigned at lists.webkit.org
        ReportedBy: lkraider+webkit at gmail.com


Steps to Reproduce:
1. Construct and open a xhr GET to a CORS (allow-credentials enabled) basic auth endpoint, setting the Authorization header.
2. Open a new xhr with the same parameters, this time without setting the Authorization header.

Actual Results:
Second request fails with 401.

Expected Results:
Browser should have cached the authentication for the domain, as it does for non-CORS requests.

-- 
Configure bugmail: https://bugs.webkit.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.



More information about the webkit-unassigned mailing list