Login failing for Kibana in iFrame due to missing sameSite cookie-setting

bojanK · March 17, 2020, 8:34pm

Hello
I'm using iFrames to integrate Kibana pages into my website. This worked well with Chrome and Firefox.
But since Chrome changed the default cookie setting of sameSite to Lax (see https://www.chromestatus.com/feature/5088147346030592), authentication to Kibana dashboard via iFrame doesn't work anymore. The reason is that the cookie set by Kibana after authentication does not have the sameSite=None setting.

I'm using Elastic/Kibana as cloud service, hence i cannot influence the cookie settings. Is there a solution from Elastic for this?

Larry_Gregory · March 18, 2020, 3:24pm

Hey @bojanK, welcome to the discussion boards!

I'm not aware of a workaround for this at the moment, but I've opened https://github.com/elastic/kibana/issues/60522 to track this on Kibana's side, as the issue isn't specific to the cloud service.

system · April 15, 2020, 3:24pm

This topic was automatically closed 28 days after the last reply. New replies are no longer allowed.