How can I persist authentication across different applications and domains in a micro-frontend architecture?

nik.baleca · June 30, 2025, 4:54pm

Hi again

As mentioned in the onRedirectCallback documentation:

By default this removes the code and state parameters from the url when you are redirected from the authorize page. It uses window.history but you might want to overwrite this if you are using a custom router, like react-router-dom See the EXAMPLES.md for more info.

I believe that the state and code parameters are not being retrieved since it uses the default behaviour.
You might want to look into handleRedirectCallback which states:

After the browser redirects back to the callback page, call handleRedirectCallback to handle success and error responses from Auth0. If the response is successful, results will be valid according to their expiration times.

Parameters

Optional url: string

The URL to that should be used to retrieve the state and code values. Defaults to window.location.href if not given.

Otherwise, I would suggest to perform a silent authentication using getAccessTokenSilently after the user logs in using the embedded website.

Kind Regards,
Nik

Topic		Replies	Views
How to persist my authentication across different apps Get Help single-sign-on	3	4255	April 14, 2020
SSO between different React Apps Get Help	5	4817	November 8, 2018
Sharing session between 2 web apps on different subdomains Get Help	11	14841	August 25, 2023
How to implement S-SSO cross domain Get Help sso , application	5	1635	April 22, 2024
Issues when implementing SSO between two auth0 SPAs Get Help auth0 , sso , spa , login , react	1	2007	July 20, 2022

How can I persist authentication across different applications and domains in a micro-frontend architecture?

Parameters

Related topics