embedded iframe url gets HTTP 302 to re-authenticate again the user

Loading

Skip to Navigation Skip to Main Content

Search

Search

Select Language

0D54z00007B5XcHCAVOkta Classic EngineSingle Sign-OnAnswered2021-09-21T14:29:12.000Z2021-09-15T20:57:08.000Z2021-09-21T14:29:12.000Z

FabioC.00127 (Customer) asked a question.

September 15, 2021 at 8:57 PM

embedded iframe url gets HTTP 302 to re-authenticate again the user

I have an embedded iframe to change user Okta settings in my site that relies on Okta to authenticate users:

<iframe frameborder="0" width="100%" [src]='oktaSettingUrl'></iframe>

where oktaSettingUrl = https://dev-XXXXXX.okta.com/enduser/settings?iframe=true&iframeControlHideAll=true

The issue is that when the page loads the iframe source url gets an HTTP 403 and it's redirected to

https://dev-XXXXXX.okta.com/login/login.htm?fromURI=/enduser/settings?iframe=true&iframeControlHideAll=true

although the user is already logged in with Okta. Does anyone can help avoid re-authenticate the user?

Fabio

User15871014366747730221 (Vendor Management)
5 years ago
You can try the solution in the following link : https://support.okta.com/help/s/article/Okta-in-IFrame-is-not-working if this does not help please have a support ticket opened https://support.okta.com/help/s/article/How-to-Create-a-Support-Case

Expand Post

This question is closed.

Recommended content

Forum

CSP policies not behaving as documented for iframe embedding (and therefore not working)

Forum

Okta Re-authenticate Issue.

Forum

Okta inside iframe getting 'X-Frame-Options' to 'sameorigin' even if enable IFrame embedded

Forum

Do you have recommendations to overcome the recent "Allow IFrame embedding" security flag?

Loading

embedded iframe url gets HTTP 302 to re-authenticate again the user