Description of the issue: I am experiencing a persistent login loop on x.com. When I enter my nickname/username and press Enter, the page refreshes almost instantly and redirects me back to the initial nickname input field. The password field never appears.
How can this issue be reproduced?
-
Go to x.com.
-
Enter username/nickname.
-
Click “Next”.
-
Page refreshes and stays on the same “Enter your phone, email, or username” screen.
Expected result: The page should proceed to the password input field.
Brave Version( check About Brave): 1.89.145 64bits
Additional Information: The login process fails to progress to the password stage. I’ve checked the DevTools Console and found a POST 400 (Bad Request) error pointing to: https://api.x.com/1.1/onboarding/task.json
Technical Details & Troubleshooting attempted:
-
Brave Version: 1.89.145
-
OS: Windows 11
-
Shields: I have tried turning off all Shields, including Trackers & Ads blocking and Fingerprinting protection. The issue persists.
-
VPN: I am using a VPN, but the same VPN works fine on Firefox and Edge, suggesting the issue is browser-specific.
-
Console Errors:
-
POST https://api.x.com/1.1/onboarding/task.json 400 (Bad Request) -
Multiple
Unrecognized featurewarnings forPermissions-Policyheaders (browsing-topics, private-state-token-redemption, etc.). -
Errors regarding
identity-credentials-get.
-
Additional Notes: It seems x.com’s anti-bot/onboarding script is rejecting Brave’s request (Error 400). This started happening about 2 weeks ago. Since it works on Firefox but fails on Brave and Tor, I suspect it might be related to how Brave handles hardware attestation or specific privacy-related APIs that X now requires.
