Infinite SSO redirect on Safari

LeoMcA · March 8, 2019, 7:03pm

I’ve spent a very long time figuring out a similar issue was caused by this samsite=lax behaviour:

github.com/mozilla/discourse

macOS 10.14/iOS 12.0 Safari login error

opened 02:45PM - 07 Sep 18 UTC

closed 02:34PM - 11 Mar 19 UTC

rleitan

bug

[Environment]: iOS 12.0 Browser: Safari, Firefox, Chrome [Steps to reproduce]:… 1.Open an iOS browser (e.g. Firefox) 2.Navigate to https://discourse.mozilla.org 3.Tap Log in button 4.Enter valid credentials (account with LDAP) [Expected results]: Successful log in [Actual results]: Log in error ![thumbnail](https://user-images.githubusercontent.com/41474886/45225578-8eddc480-b2c5-11e8-823d-67264bb15b79.jpg) ┆Issue is synchronized with this [Jira Task](https://jira.mozilla.com/browse/DISC-122)

This fixes my issue - at least on macOS Mojave - so I assume it fixes it on iOS too. Thanks!

I’d also like to know people’s opinions on this.

What with this being the Mozilla Discourse and all, we don’t have a huge amount of traffic from Safari, so don’t want to make ourselves vulnerable to CSRF attacks for something which will benefit a very small proportion of our users.

Topic		Replies	Views
SSO redirect loop with Lax cookies, but only for my IPhone?! SSO	10	3851	March 27, 2019
iOS 12 vs. iOS 13 Login Support	5	783	January 4, 2024
SSO redirect loop Support	9	1774	May 3, 2021
SSO login appears to have stopped working Bug	11	1406	January 24, 2022
SSO keeps redirecting suspended users Bug	7	1022	November 15, 2017

Infinite SSO redirect on Safari

Related Topics