PDF loaded twice and cookies lost by Edge when called with javascript window.open

Confirmed Issue #16396328 • Assigned to Gourab K.


fabrice r.
Mar 15, 2018
This issue is public.
Found in
  • Microsoft Edge
Found in build #
Reported by 6 people

Sign in to watch or report this issue.

Steps to reproduce

Similar to https://developer.microsoft.com/en-us/microsoft-edge/platform/issues/7277069/

When using the window.open(url,windowname) Javascript function to open an URL in a new browser window/tab, the window/tab opens and loads the requested URL, but the request is sent twice, and the second one is send without the session coockies

The URL called returns a code generated PDF

2018-03-13 19:27:27 GET /RPT/2110/0/0/0/0/0/0/0 - 443 - Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/58.0.3029.110+Safari/537.36+Edge/16.16299 ASP.NET_SessionId=ampnia4kncrftqqj4fgkojig https://www.opatrace.com/core/rapports/2110 200 0 0 6812

2018-03-13 19:27:29 GET /RPT/2110/0/0/0/0/0/0/0 - 443 - Mozilla/5.0+(Windows+NT+10.0;+Win64;+x64)+AppleWebKit/537.36+(KHTML,+like+Gecko)+Chrome/58.0.3029.110+Safari/537.36+Edge/16.16299 - https://www.opatrace.com/RPT/2110/0/0/0/0/0/0/0 200 0 0 1140

attachment is a small VB.net projet showing the problems :
the page sending the PDF is sent twice, the second time a new session is created because of the coockie loss.


Comments and activity

  • Users of our platform have been experiencing this issue since mid to late 2017, I couldn’t be sure. We have isolated it to the same scenario above, i.e. 2 requests being made by Edge the 2nd request without cookies. We have recommended that our users switch browsers.

  • Reported this issue sept 2017, and was thinking it was flash… but after further review it is definitely java and is causing numerous pages not to even open (for instance configuration pages for routers, wifi APs, and extenders-any that use java scripting in their platform) in my experiences.

  • I think that the issue affects URLs not directly handled by Edge itself, like PDF, java, flash …
    AND when edge can not immediatly know the type of the ressource.
    window.open(“xyz”) is affected but window.open(“xyz.pdf”) is not.
    In the same way, there is no problem when the data returned by the server is HTML, handled by edge itself

  • I am seeing similar behavior when using Edge 41.16299.248.0 to make a request to a url that returns a pdf (content type=’application/pdf’). Note that it is not necessary to use window.open(); I get the same behavior just entering the url into the address bar. The request is issued twice, always, even though the cache headers are set tp cache for one month in the pdf response. IE 11 and Firefox 59.0.1 work properly, and only issue the request once.

  • Microsoft Edge Team

    Changed Assigned To to “James M.”

  • Getting a double request with Edge 41.16299.371. See attached screen grab and look in lower right. This issue does not show up in IE, Chrome nor Firefox.

  • Microsoft Edge Team

    Changed Assigned To to “Scott L.”

    Changed Assigned To to “Arvind M.”

    Changed Assigned To to “Venkat K.”

    Changed Status to “Confirmed”

    Changed Title from “URL called twice and coockies lost by Edge when called with javascript window.open” to “PDF loaded twice and cookies lost by Edge when called with javascript window.open”

    Changed Status from “Confirmed”

    Changed Assigned To to “Manoj B.”

    Changed Assigned To from “Manoj B.” to “Gourab K.”

    Changed Status to “Confirmed”

  • Hello, please.

    please excuse my bad english - translators friend :)

    I have identified the same problem in connection with session-cookie based login.
    The browser sends a second request without cookies and the login is destroyed.

    Example test: https://phppot.com/php/user-login-session-timeout-logout-in-php

    Here you can see that the second request after the login is done without a cookie and thus a redirect occurs where a new session cookie is set.


You need to sign in to your Microsoft account to add a comment.

Sign in