Reputation: 1025
Mobile safari: iframe missing cookies
I have a web app located on domain A which contains an iframe on domain B. The request to the src on domain B has some Set-Cookie headers. If i load this web app with Safari, or chrome, I can see the cookies set from the iframe request in developer tools. However, if i visit the same page on the iOS simulator (iOS 12), the cookies are not set and I get auth errors (due to missing cookies). I haven't had any luck finding anything online about this behaviour so I have no idea how to work around it. I feel like I must be missing something because this seems like it would be a giant missing feature.
Unfortunately, i haven't had time to setup a simple reproduction for this issue.
Any kind of advice would help.
Upvotes: 1
Views: 3959
Answers (1)
Reputation: 3346
The issue is with Safari iOS do not allow setting cookies from domain B, unless you "explicitly visit" B. Workaround is to visit the iframe domain and set blank cookie there, then bounce back to original A domain. Afterwards your "Set-Cookie" directives or whatever you use to set cookies will be allowed by iOS.
Check out this solution and discussion (also includes reproduction setup): https://gist.github.com/iansltx/18caf551baaa60b79206
Upvotes: 4
Related Questions
- IOS: javascript cookie not working on ios browsers like safari or chrome
- Safari and cookies in iframe
- Safari iframe cookie issues
- Making an iframe inherit cookies from the parent in Safari
- HTML5 video/audio player on mobile Safari (iOS 7 & iOS 10) excludes cookies
- Enable session cookies for iframe in page in WkWebView / mobile Safari
- Cookie not being set in Safari, ios but works in ie, ff, chrome
- PHP multiple cookies not working on iPad / iPhone browser
- Cross-domain cookies in iframe Safari
- Iframe cookies in safari