Login screen prompts but silent login was expected
I have a pega application (App1) which is using OIDC Auth Flow to get access to the application.
In this Application (App1) we need to open an pega case from another application (SubApp2) using a mashup.
SubApp2 has also an oidc Auth Flow implemented.
In the mashup code we use the PRAuth/oidc URL to get a silent login, as the session cookie from the identity provider exists already in the browser created during initial login to App1.
But by opening the mashup we always get the login screen were we can choose the oidc Auth Flow to get authenticated.
My expectation is that we should get redirected directly to the default application which is in our case SubApp2.
<!-- ********************** Begin Pega content ********************** -->
<script src ='https://dev.domain-intern.de/prweb/PRAuth/oidc/?pzuiactionzzz=CXtpbn1hU2Y3cE5vdVhGcGh6OEJpRFlGM0h2Wm4wNFlYdXpKNWQ1eWtpbml4Mm9DSkRUc2FQZCtwSmFNSms1S1VZRThv*'></script>
<div
data-pega-gadgetname ='PegaGadget'
data-pega-action = 'OpenWorkByURL'
data-pega-action-param-query = 'pyActivity=Code-Security.OpenCaseForURLMapping'
data-pega-action-param-parameters = "{pzSkinName:'B2CUI'}"
data-pega-isdeferloaded ='false'
data-pega-applicationname ='schadenmeldung'
data-pega-threadname ='STANDARD'
data-pega-resizetype ='stretch'
data-pega-url ='https://dev.domain-intern.de/prweb/PRAuth/oidc/' ></div>
I have a pega application (App1) which is using OIDC Auth Flow to get access to the application.
In this Application (App1) we need to open an pega case from another application (SubApp2) using a mashup.
SubApp2 has also an oidc Auth Flow implemented.
In the mashup code we use the PRAuth/oidc URL to get a silent login, as the session cookie from the identity provider exists already in the browser created during initial login to App1.
But by opening the mashup we always get the login screen were we can choose the oidc Auth Flow to get authenticated.
My expectation is that we should get redirected directly to the default application which is in our case SubApp2.
<!-- ********************** Begin Pega content ********************** -->
<script src ='https://dev.domain-intern.de/prweb/PRAuth/oidc/?pzuiactionzzz=CXtpbn1hU2Y3cE5vdVhGcGh6OEJpRFlGM0h2Wm4wNFlYdXpKNWQ1eWtpbml4Mm9DSkRUc2FQZCtwSmFNSms1S1VZRThv*'></script>
<div
data-pega-gadgetname ='PegaGadget'
data-pega-action = 'OpenWorkByURL'
data-pega-action-param-query = 'pyActivity=Code-Security.OpenCaseForURLMapping'
data-pega-action-param-parameters = "{pzSkinName:'B2CUI'}"
data-pega-isdeferloaded ='false'
data-pega-applicationname ='schadenmeldung'
data-pega-threadname ='STANDARD'
data-pega-resizetype ='stretch'
data-pega-url ='https://dev.domain-intern.de/prweb/PRAuth/oidc/' ></div>
When I open the mashup URL https://https://dev.domain-intern.de/prweb/PRAuth/oidc in the same browser session but in another TAB, I get redirected directly to the SubApp2, so it works in general but not in a mashup/iframe.
Wen I opoened the mashup URL directly in the browser there is also no login screen shown anymore for the mashup and the redirect to the application works as expected.
So how I can get a silent login for the mashup without seeing a login screen?