Login failing for Kibana in iFrame due to missing sameSite cookie-setting

Hello
I'm using iFrames to integrate Kibana pages into my website. This worked well with Chrome and Firefox.
But since Chrome changed the default cookie setting of sameSite to Lax (see https://www.chromestatus.com/feature/5088147346030592), authentication to Kibana dashboard via iFrame doesn't work anymore. The reason is that the cookie set by Kibana after authentication does not have the sameSite=None setting.

I'm using Elastic/Kibana as cloud service, hence i cannot influence the cookie settings. Is there a solution from Elastic for this?

Hey @bojanK, welcome to the discussion boards!

I'm not aware of a workaround for this at the moment, but I've opened https://github.com/elastic/kibana/issues/60522 to track this on Kibana's side, as the issue isn't specific to the cloud service.

2 Likes