Hello,
we are (planning to) embed perspective views in iframes i our webpages. We are using entra/openid for authentication.
Ideally, the user should not have to log in again in the iframe, but use the entra "session" of the parent.
This works, when ignition shares a hostname with the website, when all the headers are set correctly, when cookie policies are set correctly in the client's browser and when the moon is visible on a cool morning in spring.
Do you see any other way to "transport" the user authentication? Is it possible to write an endpoint via webdev that accepts the entra token and creates a perspective session, for example?
Alternatively, is it possible to accept roles as query params in perspective screens and set these roles for the currently logged in user? That way we could write a proxy that transforms the token into query params.
Best regards, Martin