Zero Trust Application communication
Hi all, I have a question regarding the Applications talking to each other.
I have two applications, with the same access policies. This means, when a user successfully authenticates on either application, they can access the other as well. Since a global cookie gets stored in the team domain, this seems to work perfectly. However:
The applications are set-up as follows:
(app1) path: example.com/manage/* (=frontend)
(app2) path: example.com/api/* (=backend)
When the user successfully authenticates on app1, they can succesfully access app2 manually.
Successfully authenticating on the front-end (
My first thought was that this was an issue regarding cookies, but I can't seem to solve the issue. Given the two applications are on the same domain, I don't see how the cookies wouldn't be "shared".
Any ideas would be greatly appreciated
Thanks in advance!
I have two applications, with the same access policies. This means, when a user successfully authenticates on either application, they can access the other as well. Since a global cookie gets stored in the team domain, this seems to work perfectly. However:
The applications are set-up as follows:
(app1) path: example.com/manage/* (=frontend)
(app2) path: example.com/api/* (=backend)
When the user successfully authenticates on app1, they can succesfully access app2 manually.
Successfully authenticating on the front-end (
app1app2My first thought was that this was an issue regarding cookies, but I can't seem to solve the issue. Given the two applications are on the same domain, I don't see how the cookies wouldn't be "shared".
Any ideas would be greatly appreciated
Thanks in advance!
Welcome to the official Cloudflare Developers server. Here you can ask for help and stay updated with the latest news
85,042Members
Resources
Similar Threads
Was this page helpful?
