Guardian MFA in custom domain failing when 3rd party cookies disabled

adam.gatt · September 4, 2018, 10:50pm

Hi all,

I am attempting to use Guardian multi-factor authentication (via SMS) in my application. When 3rd party cookies are disabled (such as by default in Safari) the MFA fails with the error message “WE CANNOT CONNECT TO REAL TIME CHANNEL”. This is because it is trying to set a cookie from a different domain “*.au.auth0.com” than my application.

Fair enough, this is the reason that custom domains are supported. But I have now registered a custom domain “auth.my_project.com” with a CNAME pointing to my auth0 domain. And unfortunately Guardian MFA still fails with the same error message. My browser tells me that the page is still trying to set cookies from “auth0.com” and “my_project.guardian.au.auth0.com”. The URL of the actual current page does show correctly as “auth.my_project.com” at least.

Do I have my Guardian MFA configured incorrectly? How can I configure it such that these cookies are set from my own subdomain so that it will work with Safari?

Regards,
Adam Gatt

konrad.sopala · August 20, 2019, 9:27am

Hey there!

Sorry for such delay in response! We’re doing our best in providing the best developer support experience out there, but sometimes the number of incoming questions is just too big for our bandwidth. Sorry for such inconvenience!

Do you still require further assistance from us?

Topic		Replies	Views
Guardian MFA, Custom domains and blocking 3. party cookies Help guardian , mfa , custom-domain	2	4376	August 29, 2019
Disabling 3rd party cookies breaks MFA Help	4	5122	July 26, 2019
Guardian serviceUrl with Custom Domain Help guardian	4	5146	September 28, 2020
MFA Failing - WE CANNOT CONNECT TO REAL TIME CHANNEL Help mfa	32	8528	February 13, 2019
Guardian mfa Remember browser by default, disable reactivation code Help	3	4037	September 3, 2019

Guardian MFA in custom domain failing when 3rd party cookies disabled

Related topics