We are performing Chrome 80 testing | Salesforce Trailblazer Community

Jan 31, 2020, 7:18 PM

We are performing Chrome 80 testing of SameSite, which is breaking Salesforce SAML IdP redirects within an iframe.

When testing single sign-on using a Connected App with Salesforce as the SAML identity provider, the request to `*.my.salesforce.com/idp/login?app={}&RelayState={}` is unable to write a cookie due to not specifying SameSite of `None; Secure`.

As prescribed by Chrome, went to chrome://flags in Chrome 76+ and enabled “SameSite by default cookies” and “Cookies without SameSite must be secure” experiments.

Due to the above, it appears all Salesforce single sign-on using SAML within an iframe will fail once Chrome 80 with SameSite is released.

Is anyone else experiencing this? If so, are there any known workarounds (other than Salesforce making changes to their cookies)?

Thank you!

11 comments

Ashley Jose (salesforce)
Feb 12, 2020, 9:04 PM
Thanks, that great to know.

Add a comment

Write a comment...

0/9000

Salesforce Identity