Open Closed

Weird auth problem on opera and iphone browsers #1443


User avatar
0
berkbadem created

I am trying to open my page in iframe with authentication. It works perfectly for chrome, mobile browsers etc. but its not working on opera and browsers on apple devices.

As i check browser prevents to set cookie after authentication.

My cors :

private void ConfigureCors(ServiceConfigurationContext context, IConfiguration configuration) { context.Services.AddAntiforgery(x => x.SuppressXFrameOptionsHeader = true); context.Services.AddCors(options => { options.AddPolicy(DefaultCorsPolicyName, builder => { builder .WithAbpExposedHeaders() .AllowAnyHeader() .AllowAnyMethod() .SetIsOriginAllowed(origin => true) .AllowCredentials(); }); }); }


14 Answer(s)
  • User Avatar
    0
    maliming created
    Support Team Fullstack Developer

    hi

    but its not working on opera and browsers on apple devices.

    Can you share the version info of browser?

  • User Avatar
    0
    berkbadem created

  • User Avatar
    0
    maliming created
    Support Team Fullstack Developer

    hi

    Can you take a look at this?

    https://community.abp.io/articles/patch-for-chrome-login-issue-identityserver4-samesite-cookie-problem-weypwp3n

  • User Avatar
    0
    berkbadem created

    Same problem persists after recommended fix

  • User Avatar
    0
    maliming created
    Support Team Fullstack Developer

    hi

    Can you test your browser via https://samesite-sandbox.glitch.me/ then share the results?

  • User Avatar
    0
    berkbadem created

    i tried to manipulate output cookie and i removed httponly and set SameSite to Unspecified still cookie not set

  • User Avatar
    0
    berkbadem created

    Opera on win 10x64 :

  • User Avatar
    0
    berkbadem created

    safari on ios :

  • User Avatar
    0
    berkbadem created

    Firefox on ios :

  • User Avatar
    0
    berkbadem created

    Brave on ios :

  • User Avatar
    0
    maliming created
    Support Team Fullstack Developer

    hi

    Can you add your browser's userAgent in DisallowsSameSiteNone(string userAgent) method?

    They does't recognize SameSite=None;

  • User Avatar
    0
    berkbadem created

    No luck, i even tried return true alwas but no luck.

  • User Avatar
    0
    maliming created
    Support Team Fullstack Developer

    i even tried return true alwas but no luck.

    What's is results now?

    https://samesite-sandbox.glitch.me/

    Can you share your website url and user&password with me? liming.ma@volosoft.com

  • User Avatar
    0
    ServiceBot created
    Support Team Automatic process manager

    This question has been automatically marked as stale because it has not had recent activity.

Made with ❤️ on ABP v8.2.0-preview Updated on March 25, 2024, 15:11