I can confirm this on Android. On Desktop, the auth dialog is dismissed on the redirect, but on mobile it isn't.

yfriedman: According to git log, you upstreamed LoginPrompt.java and there've only been mechanical changes since. Can you take a look or suggest an owner for this bug?

Have we tried repoing in Chrome 68? It's possible that some auto-dismissing logic doesn't trigger anymore? 

Although a quick look doesn't suggest this would ever have been dismissed. That is unless we had some global dialog dismisser but I don't know if that's even possible, +ted?

Looks like a legitimate issue. What's the turnaround expected, rsesek? Would we want to try and include in a m69-respin or m70? Not sure how to verify whether the auth credentials end up getting used or are invalidated at a later stage?

The following revision refers to this bug:
  https://chromium.googlesource.com/chromium/src.git/+/f40a8c947f6f13ea97baa3d7967e033f75587b41

commit f40a8c947f6f13ea97baa3d7967e033f75587b41
Author: Ted Choc <tedchoc@chromium.org>
Date: Mon Sep 17 18:31:56 2018

Auto-dismiss http auth dialogs on navigation for Android.

BUG= 884179 

Change-Id: I18287e9c641045d5a74f3804e06ca17485e38957
Reviewed-on: https://chromium-review.googlesource.com/1227482
Commit-Queue: Ted Choc <tedchoc@chromium.org>
Reviewed-by: Yaron Friedman <yfriedman@chromium.org>
Cr-Commit-Position: refs/heads/master@{#591747}
[modify] https://crrev.com/f40a8c947f6f13ea97baa3d7967e033f75587b41/chrome/android/java/src/org/chromium/chrome/browser/ChromeHttpAuthHandler.java
[modify] https://crrev.com/f40a8c947f6f13ea97baa3d7967e033f75587b41/chrome/android/java/src/org/chromium/chrome/browser/LoginPrompt.java
[modify] https://crrev.com/f40a8c947f6f13ea97baa3d7967e033f75587b41/chrome/android/java_sources.gni
[add] https://crrev.com/f40a8c947f6f13ea97baa3d7967e033f75587b41/chrome/android/javatests/src/org/chromium/chrome/browser/ChromeHttpAuthHandlerTest.java
[modify] https://crrev.com/f40a8c947f6f13ea97baa3d7967e033f75587b41/chrome/browser/ui/android/chrome_http_auth_handler.cc
[modify] https://crrev.com/f40a8c947f6f13ea97baa3d7967e033f75587b41/chrome/browser/ui/android/chrome_http_auth_handler.h
[modify] https://crrev.com/f40a8c947f6f13ea97baa3d7967e033f75587b41/chrome/browser/ui/android/login_handler_android.cc

*** Boilerplate reminders! ***
Please do NOT publicly disclose details until a fix has been released to all our users. Early public disclosure may cancel the provisional reward. Also, please be considerate about disclosure when the bug affects a core library that may be used by other products. Please do NOT share this information with third parties who are not directly involved in fixing the bug. Doing so may cancel the provisional reward. Please be honest if you have already disclosed anything publicly or to third parties. Lastly, we understand that some of you are not interested in money. We offer the option to donate your reward to an eligible charity. If you prefer this option, let us know and we will also match your donation - subject to our discretion. Any rewards that are unclaimed after 12 months will be donated to a charity of our choosing.
*********************************

Nice one, ma7h1as.l@ - $1,000 for this report.

This bug requires manual review: M71 has already been promoted to the beta branch, so this requires manual review
Please contact the milestone owner if you have questions.
Owners: benmason@(Android), kariahda@(iOS), kbleicher@(ChromeOS), govind@(Desktop)

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot

The CL already landed in M70 (71.0.3555.0), removing spurious merge bits.

This bug has been closed for more than 14 weeks. Removing security view restrictions.

For more details visit https://www.chromium.org/issue-tracking/autotriage - Your friendly Sheriffbot