ADM Authority Request Loop

Problem Description

In ADM, you may observe that both the entire page and the browser's performance could degrade, often due to a recurring loop in the check session or authorize requests. It's also possible that you'll encounter instances of duplicated requests.

When examining the network tracing within the web browser, you might come across a pattern similar to the one shown below:

Root Cause

This is because the idsrv.session cookie, set for the Ometa authority service domain is enforced to be HttpOnly. This could be enforced by security policies or proxies.

The underlying cause of this behavior is linked to the idsrv.session cookie, which is set for the Ometa authority service domain. Notably, this cookie is configured to have the HttpOnly attribute enforced. Such enforcement could be a result of security policies or proxy configurations.

Resolution

To address this issue, it is needed to modify the settings of the idsrv.session cookie and set HttpOnly to false.

Note: It's important to emphasize that modifying the idsrv.session cookie to disable the HttpOnly attribute is safe to do, as this cookie does not contain any sensitive information. It solely controls the session and is not susceptible to potential security risks by making this adjustment.