This is the way all identity systems work (you can see this with Google and Microsoft social, or Facebook, for instance), under the assumption that it’s the same user opening different tabs in the browser.
Not true. google will not sign one in if its in incognito mode. if the user has never been signed in in the mode. and closing the incognito mode window should not retain the session. but auth0 does. why is that?
1 Like