Replies: 1 comment
-
Yes. 3rd Party cookies are the only option according to Microsoft for silentSSO |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
I have a Single-SPA with multiple micro-apps using MSAL v2. They each use the same client id to validate user is authenticated using silent sso, and all are subdomains of the same main domain, eg:
Yet if 3rd party cookies are blocked by the user's browser the single-spa's fail to load. My understanding is that for silent SSO that MSAL uses a hidden iframe. I also thought subdomains were not considered 3rd party sites.
I'm just trying to understand why the cookie issue in this scenario? Is enabling 3rd Party cookies the only option?
Beta Was this translation helpful? Give feedback.
All reactions