Support Article
Cross domain IE popup for IAC
SA-5153
Summary
A cross domain popup appears in an IAC implementation. The same origin policy is implemented by using F5 load Balancer. However, the popup appears during SSO authentication. This warning pop up is confusing.
Error Messages
Not Applicable
Steps to Reproduce
1. Configure a standard IAC implementation with no PRGateway.
2. Configure Siteminder with desktop level authentication used to authenticate requests to PRPC.
Root Cause
The first HTTP request when using an IAC implementation is a call to "PRGatewayPing". This call is made through AJAX and causes the cross domain popup because of redirection occurring during authentication handled by Siteminder.
The redirects were specific only to Siteminder as it was redirecting to core standard systems used for authentication within the client infrastructure that were within a different domain level. Since the requests did not satisfy same domain origin policy, the browser was correctly displaying the warning.
This will only occur within AJAX POST or GET requests, standard browser level HTTP GET requests will not have this issue.
Resolution
Add a HTML file (for example, blank.html) to the deployment of PRPC. The HTML should contain basic content to define a page but no visible content:
<html><body></body></html>
In the parent application, place an inline HTML iFrame with zero height and zero width and a source value URL to the PRPC blank.html file:
/prweb/blank.html
This URL will be accessed first during the page load as the PRGatewayPing request is made onLoad of the primary page. Therefore, authentication at the Siteminder level will first occur when accessing "/prweb/blank.html" and avoids the authentication during the AJAX processing.
NOTE: This will only work if you are using Desktop level authentication within Siteminder.
Tags:
Published January 31, 2016 - Updated December 2, 2021
Have a question? Get answers now.
Visit the Collaboration Center to ask questions, engage in discussions, share ideas, and help others.