Google Sign-in not working in incognito mode
Solution 1
Angular is just javascript in a browser. So a user loading an angular app is being served a bunch of javascript from your server. If that server handles authentication with google-api, then your user only interacts with your server (albeit with a redirect to sign into google).
This authentication flow doesn't require 3rd party cookies.
However! If your authentication is handled directly in the user's browser, then your app will not work if 3rd party cookies are disabled (as they are in incognito mode).
For example, I have an angular app that I serve via Github pages. Github serves the app but then doesn't do anything else. Since I need to create a document in the user's GDrive, I authenticate and access their resources all from within a javascript client. For that to work securely, users of my ap must allow 3rd party cookies. There isn't really a way around that.
If I had a backend for my app, then the user could give my server permission to access their google drive and no 3rd party cookies would be required. At that point, it's not the frontend javascript client (angular app) that is accessing the user's GDrive, but instead my server.
Using a backend allows for a different and generally more secure authentication flow. To a user, however, the user experience is the same. This is why in some situations the user must allow 3rd party cookies and in others, they do not.
In general, you can secure a server much better than you can trust a user's system/browser to be secure. If security is a concern, you really should be making API calls from a server rather than from within a browser. Doing so should also fix your problem.
Solution 2
You're probably using 'ux_mode': 'redirect' which involves iframes and cookies.
Try using popup mode.
PS. You mention "Other sites perfectly working" - they are probably using oAuth2 authentication flow server-side, which is based on redirects.
PPS. More info https://developers.google.com/identity/sign-in/web/troubleshooting see "Known issues"
Related videos on Youtube
02 : 15
15 : 00
03 : 23
03 : 29
02 : 46
15 : 06
05 : 04
01 : 36
01 : 02
03 : 40
06 : 53
02 : 17
Md. Mustafizur Rahman
Technical Lead working mostly in .net/.net core, angular
Updated on September 16, 2022Comments
-
Md. Mustafizur Rahman over 1 year
I have used Google sign-in my angular 9 project. I am using google sign-in js API. It's giving error Cookies are not enabled in current environment in google chrome incognito mode, although it's working fine in normal google chrome tab. below is the error details.
details: "Cookies are not enabled in current environment." error: "idpiframe_initialization_failed"Understand that in incognito mode by default third party cookies are disabled but what is the solution for this? I found other sites that are using google sign-in is perfectly working in google chrome incognito mode.
-
Shrike about 3 yearsNope, with popup mode it's the same behavior
-
Jay about 3 yearsThat's because it defaults to 'popup'. -
Alex von Brandenfels over 2 yearsThis does not fix the problem in the site, it just makes it work on OP's computer. It would still be broken for everyone else.
