Cross-site cookies with aut0 for login

guillex · January 14, 2020, 3:18am

Hi,

We are experimenting issues for authentication. Please see image below

The origin https://tracking.ourdomain.com has been added in the text area.

We’ve been having this issue since recently, our application code hasn’t changed since June 2019 and it was working just fine before a week ago.

Thanks!

Used browser: Google chrome, most recent version.

We have double check our ClientID

Our backend is with Nodejs, packages:

"cors": "^2.8.5",
"debug": "~2.6.9",
"express": "^4.16.4",
"express-jwt": "^5.3.1",
"http-errors": "~1.6.3",
"jwks-rsa": "^1.5.0",

Our frontend is with VueJS, packages:

“auth0-js”: “^9.11.2”,

dan.woda · January 15, 2020, 6:42pm

This issue looks like it may be related to the sameSite changes that Chrome has recently enacted.

Please review this doc and make sure you conform to the changes:

Thanks,
Dan

dan.woda · January 29, 2020, 10:42pm

This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
A cookie associated with a cross-site resource at http://auth0.com/ was set without the `SameSite` attribute Help	21	13057	October 2, 2020
SameSite attribute still not set in cookies after Authorization Extension update Help authorization	3	5662	March 10, 2020
Auth0 Chrome SameSite issue Help lock	14	9433	August 26, 2020
Auth0-spa-js silent login issues "Samesite Cookie" issue Help	6	6920	February 26, 2020
Angular SDK Cookies - SameSite Help	2	6866	June 7, 2020