<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeCommunityForum
0D51Y00009vyl7wSAAOkta Classic EngineAdministrationAnswered2024-04-15T09:42:25.000Z2020-11-19T16:45:20.000Z2020-11-27T13:29:40.000Z

fys1u (fys1u) asked a question.

November 19, 2020 at 4:45 PM
OKTA Embedding Apps with OpenId

I have 2 applications configured with OpenId on Okta.

I intend to embed one app in the other using an IFrame.

 

I understand there is a setting to allow Iframe embedding.

Okta admin page -> Customization -> IFrame Embedding select Allow IFrame embedding

 

However, this is susceptible to Clickjacking attacks for all the apps on the domain.

 

Is there a way to do this on an app basis or another more secure way of doing so? Could I use the Okta sign in widget twice in my app for React?

 

 

  • 1 answer
  • 559 views

  • User15905896560008893663 (Vendor Management)

    In order for us to give you the best answer, please open a case with us through an email to developers@okta.com. Please provide all the details regarding the use-case and the full scenario for the implementation. Thank you.

This question is closed.
Loading
OKTA Embedding Apps with OpenId