Hi all, we are using auth0-spa-js 1.13.6 in our application. We require the SharedArrayBuffer in our application and therefore we need to set the Browser to cross-origin isolated by adding the following headers: Cross-Origin-Opener-Policy: same-origin Cross-Origin-Embedder-Policy: require-corp S…

Use SPA SDK with Cross-Origin Embeder Policy

siebe May 2, 2022, 10:41am 2

Hi Markus,

We are experiencing the exact same issue, also using a SharedArrayBuffer. Did you find a way to let auth0 include these two CORP headers in the /authorize endpoint?

Topic		Replies	Views
Is it secure to embed SPA in iframe? Get Help spa , login , iframe , embedded-login	3	4131	May 26, 2021
Does auth0-spa-js SDK have support for Embedded login? Get Help lock , auth0	10	5033	November 17, 2020
http://SPA ... auth0-spa-js must run on a secure origin Get Help	3	6366	March 4, 2020
Why does checkSession require explicitly Allowed Web Origin to be set? Get Help auth0-spa-js	2	3058	February 17, 2021
Auth0-spa-js silent login issues "Samesite Cookie" issue Get Help	6	6971	February 26, 2020

Use SPA SDK with Cross-Origin Embeder Policy

Related topics