Checklist
Description
Description
When users attempt to log in using a different domain (cross-domain SSO), the authentication flow works correctly on Chrome but silently fails on Firefox and Safari. This appears to be related to third-party cookie restrictions and ITP (Intelligent Tracking Prevention) enforced by these browsers.
Browser behavior
| Browser |
Status |
Notes |
| Chrome |
✅ Working |
SSO completes successfully |
| Firefox |
❌ Broken |
SSO fails silently |
| Safari |
❌ Broken |
SSO fails silently |
Configuration
<Auth0Provider
domain="YOUR_AUTH0_DOMAIN"
clientId="YOUR_CLIENT_ID"
authorizationParams={{
redirect_uri: window.location.origin,
}}
>
<App />
</Auth0Provider>
Expected behavior
SSO should work consistently across all major browsers. A user authenticated on app.example.com should be recognized when visiting portal.otherdomain.com without needing to re-authenticate.
Actual behavior
Firefox and Safari block the third-party session cookie set by Auth0 due to privacy restrictions (ETP / ITP), causing the SSO check to fail. The user is redirected to the login page or gets stuck in a redirect loop.
Environment
Package: @auth0/auth0-react
Version: ^2.17.0
Browser: Firefox Latest / Safari Latest
OS: macOS / Windows
Framework: React 19.1.0
Reproduction
Steps to reproduce
- Configure
Auth0Provider with a primary domain (e.g. app.example.com)
- Log in from a second domain (e.g.
portal.otherdomain.com) that shares the same Auth0 tenant
- Open Firefox or Safari — ensure Enhanced Tracking Protection (Firefox) or ITP (Safari) is active
- Attempt the SSO login flow
- Observe: on Chrome the user is authenticated. On Firefox/Safari the session is not recognized and authentication fails or loops
Additional context
No response
auth0-react version
2.17.0
React version
19.1.0
Which browsers have you tested in?
Chrome
Checklist
Description
Description
When users attempt to log in using a different domain (cross-domain SSO), the authentication flow works correctly on Chrome but silently fails on Firefox and Safari. This appears to be related to third-party cookie restrictions and ITP (Intelligent Tracking Prevention) enforced by these browsers.
Browser behavior
Configuration
Expected behavior
SSO should work consistently across all major browsers. A user authenticated on
app.example.comshould be recognized when visitingportal.otherdomain.comwithout needing to re-authenticate.Actual behavior
Firefox and Safari block the third-party session cookie set by Auth0 due to privacy restrictions (ETP / ITP), causing the SSO check to fail. The user is redirected to the login page or gets stuck in a redirect loop.
Environment
Reproduction
Steps to reproduce
Auth0Providerwith a primary domain (e.g.app.example.com)portal.otherdomain.com) that shares the same Auth0 tenantAdditional context
No response
auth0-react version
2.17.0
React version
19.1.0
Which browsers have you tested in?
Chrome