Hey Ory folks, I have been trying to figure out a ...
# ory-network
r
Hey Ory folks, I have been trying to figure out a solution for pulling our companies IDP into a microservice that will provide authentication for multiple project domains. Currently this logic sits tightly coupled within Project 1. Project 2 then uses oauth2 to authenticate off Project 1. Then we have Project 3 that has it's own completely separate auth logic. I have just come across this article, from Vincent which is very similar to my situation. My question is, from the image below taken from the post, can a user log into project domain 1, then navigate to project domain 2 or 3 without being required to log back in?
b
That depends on whether domain 2 and domain 3 are on the same root domain, e.g. domain1.example.com, domain2.example.com and domain3.example.com. In that case Ory can issue the cookie for example.com and the session would be active on domain2 and domain3, etc. If that’s not the case, there is no way to share the cookie automatically (as third party cookies are deprecated and not supported in at least Safari) and your users would have to login again on each domain.