RM

Hi,

Hoping the community can point me in the correct direction, we are testing embedding ARIS Connect views into other sites, (the iframe code is taken from the share option in ARIS Connect).

Everything works quite well between sites that share the same domain extention with the ARIS servers:

e.g. server1.domain1.ex will show a iframe from aris.domain1.ex

But.. when we try and embed the view into a different domain

e.g.server1.domain2.ex will fail a iframe from aris.domain1.ex

This seems to be related to new cross-site checks in some browsers that prevent cookies from being loaded due to them being in a different domain. The fix seems to be that cookies need to be updated to work specifically in the context.

See error below from chrome:

Because a cookie’s SameSite attribute was not set or is invalid, it defaults to SameSite=Lax, which prevents the cookie from being set in a cross-site context. This behavior protects user data from accidentally leaking to third parties and cross-site request forgery.

Resolve this issue by updating the attributes of the cookie:

  • Specify SameSite=None and Secure if the cookie is intended to be set in cross-site contexts. Note that only cookies sent over HTTPS may use the Secure attribute.
  • Specify SameSite=Strict or SameSite=Lax if the cookie should not be set by cross-site requests.

Is there a patch level on ARIS that fixes this, or is there a option somewhere that we can change the default cookie settings.

Thanks,

Robert

 

by Veronika Ellermann
Posted on Mon, 08/30/2021 - 13:11

Hi Robert,

I would raise a ticket with the SAG support, maybe they have a solution to your problem.

Best,

Veronika

0

Featured achievement

Rookie
Say hello to the ARIS Community! Personalize your community experience by following forums or tags, liking a post or uploading a profile picture.
Recent Unlocks

Leaderboard

|
icon-arrow-down icon-arrow-cerulean-left icon-arrow-cerulean-right icon-arrow-down icon-arrow-left icon-arrow-right icon-arrow icon-back icon-close icon-comments icon-correct-answer icon-tick icon-download icon-facebook icon-flag icon-google-plus icon-hamburger icon-in icon-info icon-instagram icon-login-true icon-login icon-mail-notification icon-mail icon-mortarboard icon-newsletter icon-notification icon-pinterest icon-plus icon-rss icon-search icon-share icon-shield icon-snapchat icon-star icon-tutorials icon-twitter icon-universities icon-videos icon-views icon-whatsapp icon-xing icon-youtube icon-jobs icon-heart icon-heart2 aris-express bpm-glossary help-intro help-design Process_Mining_Icon help-publishing help-administration help-dashboarding help-archive help-risk icon-knowledge icon-question icon-events icon-message icon-more icon-pencil forum-icon icon-lock