Security Policy Changes for iFraming Login Pages
In alignment with industry trends and user privacy concerns, Google has announced its plan to phase out support for third-party cookies in Chrome in Q3 of 2024.
This change will have implications for applications that rely on third-party cookies for various purposes, including iFraming the login page in integration with Developer Connect APIs using SAML Sign On for user authentication.
In an effort to enhance security and protect user data, ICE Mortgage Technology will be disallowing the embedding of the login pages within iFrame in a future release.
This change is being implemented to prevent potential security vulnerabilities associated with iFrames. As a result, if your application currently uses iFrame to embed our login page, you will need to update your implementation to ensure compliance with this new policy.
We recommend using alternative methods, such as redirecting users to our login page or using API-based authentication, to maintain a seamless user experience.
If you have any questions or need assistance in navigating this transition, please contact your ICE Mortgage Technology support representative.
Updated 6 months ago