The login works fine on IE, Edge, Chrome and Firefox, but on Safari/WebKit based browsers, it’s not working. I figuerd the hash, that is added to the callback url, is missing when the user gets redirected. So the following function does not work - there is no hash to parse:
Have you found the solution?
I discovered this problem on a production server. Hash is returned successfully with Chrome, but with Safari - no. And it’s also missed with Chrome on iPhone.
I have a similar problem. On Safari in Incognito mode, whenever finish authenticating on the Hosted Login, I get redirected back without a hash. Thus, parseHash returns an error: {error: "invalid_token", errorDescription: "Nonce does not match."}.
It works fine in Chrome (though sometimes I get the same bug, I just can’t reliably recreate it) and in regular Safari.
Have you found the solution?
I discovered this problem on a production server. Hash is returned successfully with Chrome, but with Safari - no. And it’s also missed with Chrome on iPhone.
I have a similar problem. On Safari in Incognito mode, whenever finish authenticating on the Hosted Login, I get redirected back without a hash. Thus, parseHash returns an error: {error: "invalid_token", errorDescription: "Nonce does not match."}.
It works fine in Chrome (though sometimes I get the same bug, I just can’t reliably recreate it) and in regular Safari.
The problem is that Safari strips the hash part on redirects IF the hash is not preceded by a trailing slash. See this comment for a full description of the problem:
I also like to point out that in Safari 12, the redirectUri cannot include the filename.
For example:
http://localhost:5000/foohome WORKS
http://localhost:5000/foohom/ WORKS
http://localhost:5000/foohome.html/ **DOES NOT WORKS**
http://localhost:5000/foohome.html **DOES NOT WORKS**