Comment #32 on issue 25133 by [email protected]: eBay to PayPal transition always throws an error http://code.google.com/p/chromium/issues/detail?id=25133
This bug is caused by not updating the first_party_for_cookies_ member of URLRequest when following a redirect. When we follow the instructions in comment 20 and click the "Continue" button, we go to https://secure.flyingmeat.com/store/paypalcheckout.cgi which is redirected to a URL like https://www.paypal.com/cgi-bin/webscr?cmd=_express-checkout&token=EC- 37671413VR682091W Unfortunately we don't change first_party_for_cookies_ to the new URL, so when the new URL tries to set cookies for paypal.com, the cookies are considered third-party and blocked. In WebKit, MainResourceLoader::willSendRequest may change the "first party for cookies" URL of the request: // Update cookie policy base URL as URL changes, except for subframes, which use the // URL of the main frame which doesn't change when we redirect. if (frameLoader()->isLoadingMainFrame()) newRequest.setFirstPartyForCookies(newRequest.url()); So we should propagate that URL to the network stack when following a redirect. I proposed two solutions: http://codereview.chromium.org/387013 http://codereview.chromium.org/385024 -- You received this message because you are listed in the owner or CC fields of this issue, or because you starred this issue. You may adjust your issue notification preferences at: http://code.google.com/hosting/settings -- Automated mail from issue updates at http://crbug.com/ Subscription options: http://groups.google.com/group/chromium-bugs
