[Webkit-unassigned] [Bug 180922] New: Intelligent Tracking Prevention removes cookie in a first-party context

Sun Dec 17 18:32:08 PST 2017

https://bugs.webkit.org/show_bug.cgi?id=180922

            Bug ID: 180922
           Summary: Intelligent Tracking Prevention removes cookie in a
                    first-party context
           Product: WebKit
           Version: Safari 11
          Hardware: Macintosh
                OS: macOS 10.13
            Status: NEW
          Severity: Normal
          Priority: P2
         Component: WebKit Misc.
          Assignee: webkit-unassigned at lists.webkit.org
          Reporter: jaffadog at gmail.com

Safari 11.0.1 on MacOS 10.13.1. Issue also reproducible on iOS devices.

When I visit https://mywindy.com/ I see the site issues an auth_token session cookie in the response to the first request. However, Safari does not submit that cookie in subsequent requests to https://mywindy.com/ leading to 401s. The issue manifests when "prevent cross-site tracking" is checked, and does not manifest when that option is unchecked. This would seem to be a simple first-party context situation.

Regards,
Jeremy

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.webkit.org/pipermail/webkit-unassigned/attachments/20171218/55825b92/attachment.html>