Alterative to "sessions/me" API

vikrampatil115 · May 26, 2022, 6:29pm

“sessions/me” API call is failing due to an access cross-domain cookie. “sessions/me” API is an ajax call made from B.com application, “sessions/me” API call requires cookie “sid” to fetch the required result from Okta and “sid” cookie is set on the “A.com” okta custom domain, not on B.com domain .

Do we have an alternative to fetch sessions/me call details with ID token or access token?

andrea · June 10, 2022, 9:45pm

No, because the tokens are not directly tied to the Okta session. The Okta session (the one managed as a session cookie set on the Okta domain, hence the x-site cookie issue) is only needed to get the tokens in the first place. The user does not need to have a valid Okta session to still have valid tokens.

Post		Replies	Views
Session ID issue due to cross domain OAuth/OIDC	2	2763	June 3, 2022
How to read idx cookie for /api/session/me request? API	2	1991	March 30, 2024
Use Access Token (JWT) as Bearer Token to call /users/me OAuth/OIDC o4o	7	147	June 22, 2025
/api/v1/sessions/me is not found API	5	9444	May 18, 2021
How to get session cookie OAuth/OIDC	7	9332	February 12, 2024

Alterative to "sessions/me" API

Related topics