Problem statement
Google Identity Services will migrate to FedCM in April 2024, where Chrome will restrict access to third-party cookies by default.
Solution
To test whether logins are affected when third-party cookies are blocked, start by manually blocking third-party cookies in a browser and attempting login.
As understood, some browsers, such as Safari, already block 3rd-party cookies by default, so there is some documentation available for working around this issue:
- Troubleshoot Renew Tokens When Using Safari - Regarding Safari’s behaviour specifically
- Architecture (B2C) - Use of custom domains in relation to cookies/sessions
This will also not affect a tenant if it is using a Custom Domain with Auth0 and if the second-level domain matches the application’s domain.