e4dvx (e4dvx) asked a question.
Single Sign-On Across Multiple Domains by disabling third party cookies using Okta-Auth-Js
We have implement the SSO login across Multiple domains using * token.getWithoutPrompt. GetWithoutPrompt(okta+javascript) must have access to cookies on the Okta domain via an iFrame.
Since all the modern browsers (chrome, safari) have disabled third party cookies, Is there another way to achieve SSO login and token renewal even when third party cookies are disabled.
Went through the Okta Custom domain suggestions, it may work for SPA or single domain, but our case its multiple domains. eg: Application1 is a plugin that can be plugged into any apps with different domains(Jira plugin)
Thank you for contacting Okta Support, my name is Catalin and I will assist you with this issue.
From a Support, perspective, we recommend going to Settings->Customization and enable IFrame embedding.
If this does not help, please open a ticket with our Developers to discuss any modifications to the SDK
Thanks for the reply Catalin. Enable IFrame embedding is not an application specific instead its an general settings.
Will there be any impact on other applications configured in okta by enabling IFrame embedding
Modern browsers (chrome, safari) are blocking third party cookies by default, it affects all our end-users from accessing our many applications.(logging in/SSO)
End users had to manually enable third party cookies to use our applications. Is there any other workaround to overcome the impact of blocking third party cookies for SSO rather than custom domains.