diff --git a/netwerk/protocol/http/nsHttpAuthCache.cpp b/netwerk/protocol/http/nsHttpAuthCache.cpp
index 7596e3661575..1ce752ff3f35 100644
--- a/netwerk/protocol/http/nsHttpAuthCache.cpp
+++ b/netwerk/protocol/http/nsHttpAuthCache.cpp
@@ -580,7 +580,11 @@ nsHttpAuthNode::SetAuthEntry(const char *path,
         entry = new nsHttpAuthEntry(path, realm, creds, challenge, ident, metadata);
         if (!entry)
             return NS_ERROR_OUT_OF_MEMORY;
-        mList.AppendElement(entry);
+
+        // We want the latest identity be at the begining of the list so that
+        // the newest working credentials are sent first on new requests.
+        // Changing a realm is sometimes used to "timeout" authrozization.
+        mList.InsertElementAt(0, entry);
     }
     else {
         // update the entry...