I have already posted the same a few months ago
viewtopic.php?f=6&t=18437I can confirm that this problem starts with CEF v90. We did some tests on a customer machine where this problem still occurs and tried with cefclient v89, cefclient v90 and cefclient v91. With cefclient v89 there was no problem and the redirect from
https://example.com:port1 to
https://example.com:port2 works without problems. Beginning with cefclient v90 an OnLoadError with ERR_SSL_CLIENT_AUTH_CERT_NEEDED is thrown and the request is aborted.
This problem is not solved yet and still appears with v94.
A workaround was to automatically reload the request, but this works only fine for main frames and not for sub frames. Another problem of this reload approach is that in our case the following NTLM authentication (which happens after the redirect) is not done correctly, because the negotiate step is intercepted.
We have recorded some fiddler traces and it seems that the response after the redirect is correctly send from the server, but on client side (CEF/Chromium based browser control) the LoadError is thrown. We checked everything (SSL configuration, Server response) and cannot find any error with this. SSL must be correct, because there is no problem if we directly start with
https://example.com:port2 and it works also in all other standard browsers + IE webbrowser control and earlier CEF versions.
So from our point of view there must be a bug or a wrong behaviour in CEF itself. Unfortunately it is not possible to provide a public available and reproducible scenario where exactly the same problem occurs.
It is also not possible to debug CEF, because we cannot do this on customer systems.
I searched the forum a lot and it seems that there are some others reporting problems with redirects, NTLM authentication problems and situation where OnCertificateErrors and OnLoadErrors are mixed up.
I really appreciate some help on this (for example a starting point to search CEF code and diff between 89 and 90) or maybe the thread opener can provide a reproducible scenario.
This really starts to hurt our customer as we cannot provide a fix or workaround.