I have looked through this topic but none seem to quite address our issue.
We are trying to integrate auth0 with our production environment after a successful integration in our dev (QA) environment. In production, we are getting this error after a successful authentication but during exchange it fails:
Auth0\SDK\Exception\StateException : Expected state to be a32c6d0303f21a1bc2c0cd0df70a8f41; client had [NOT SET ON CLIENT] in Auth0\SDK\Auth0->exchange() (line 188 of vendor/auth0/auth0-php/src/Auth0.php )
Looking at devtools in Chrome, there is a distinct difference between prod and dev upon login. In dev, I see we are setting auth0_session_0 and auth0_session_1 cookies for the login but not in production. These cookies are completely missing. The dev and prod code is identical along with the drupal they are working in. QA works without any issue. It’s the production version that is throwing the exception. Are there settings that could cause this discrepancy?