Hello, we are trying to integrate with an internal application but we are running into an issue with the cookies, and iframe sandbox settings. I've added the below control application permission from the "Set up a Client Application integration" guide. However, we are getting the below error message when attempting to connect with the credentials.
Error Message:
I got it to work without an error removing "same-origin" and running the "scripts." However, it is only spinning after attempting to sign in. This is while running within the Genesys desktop app. @Justin_Ray any guidance on how I can get it to work in the app? Works fine using Chrome but not the same in the Genesys app.
allow-same-origin should allow the iframe to support cookies (and localstorage) on the iframe's origin. But, I wonder if you're running into a SameSite cookie issue. tl;dr ... the new cookie default in chrome is to not set 3rd-party cookies which is the case in iframes loaded across domains. In the working Chrome version, you should be able to look in Dev Tools -> Application -> Cookies and see what the SameSite value is for the cookies. If it's strict or lax, the browser may be blocking the iframe from setting/sending the cookies. If this is the case, the only solution would be to see if the cookies can be changed to SameSite=None. Heads up though, this new cookie behavior is designed to protect clickjacking of cookies. So, some assessment of the risk is in order. Hope this sheds some light and let me know if I can help further.
Hi @Justin_Ray, thanks for the additional information. Any chance you can connect with us for a 30 min session so you can walk us through the changes? If so, I can share a meeting invite. Thanks a lot for your support!
Hi Jamie,
Any requests for direct calls with a Genesys developer needs to come through your Customer Success Manager (CSM) or Technical Account Manager (TAM). I would chat with them. They usually reach out to the product manager in the area and the PM will determine if an engineering resource can join in.
Thanks,
John Carnell
Manager, Developer Engagement