vikasrohit
commented
7 years ago @birdofpreyru I think we can close this now. :)
Closed birdofpreyru closed 7 years ago
vikasrohit
commented
7 years ago @birdofpreyru I think we can close this now. :)
birdofpreyru
commented
7 years ago Right! :)
I have already asked about it in some channels on Slack, but as it did not result in any changes, I open this ticket here :)
Right now, when authentication is handled by accounts connector, Topcoder auth token v2 is written into
tcjwtcookie, undertopcoder.com / topcoder-dev.comdomains, but auth token v3 is written intov3jwtcookie underaccounts.topcoder.com / accounts.topcoder-dev.comdomains. As the result, when the user of connector sends a request to the server (from its own subdomain oftopcoder.com), onlytcjwtcookie is sent along with the request, whilev3jwtis not (because it is explicitely set for a different subdomain). Can we ensure thatv3jwtcookie is set fortopcoder.com / topcoder-dev.comdomains as well?