Sharing autentication beetween different domain

cesco69 · March 8, 2023, 9:57am

Hi, my company has multiple top domains, eg.

foo.com
bar.net
baz.org

I have created a subdomain for each authentication domain:

auth.foo.com
auth.bar.net
auth.baz.org

and behind each subdomain there is the same keycloak instance.

The authentication works as long as the user stays within the same top domain but as soon as the user changes the top domain he’s in he’s logged out.

Is there a way for sharing the authentication among multiple domains?

The main issue is that the cookies are not shared among the different domains.

tanhua · March 5, 2024, 12:26am

Curious if and how this issue was resolved?

cesco69 · March 5, 2024, 8:40am

I cannot resolve it with keycloak… I’ve made a workaround in client applications. This is a script who shares via post messages cookie values

rodeaboli · March 19, 2024, 6:59am

Hi @cesco69 , how did you resolved the issue on client application?
did it work in incognito modes? especially in iFrames, if you have any in your project.

Topic		Replies	Views
SSO across subdomains Getting advice	4	7487	December 26, 2019
I want to share cookies between subdomain	0	129	March 6, 2024
Configuring Cookie Domain of Keycloak Cookies Configuring the server oidc	17	38445	April 4, 2022
I am not able to access keycloak cookies even being on same parent domain in incognito mode Configuring the server	4	1694	June 6, 2024
How to do redirect-less SSO across subdomains? Securing applications authentication	8	2181	November 25, 2021

Sharing autentication beetween different domain

Related topics