Embedded DSX requires Third-Party Cookies for a proper User Experience
Note that using the DSX in embedded mode is only more user-friendly if the web browser is set to accept so-called third-party cookies (i.e., HTTP Cookies set and read by sites other than the one they are visiting). With web browsers configured to block third-party cookies – which is already the default behaviour for Firefox and Safari, with Chrome to follow – an embedded DSX will never remember the selected IDP and it will never show a previously selected IDP. Forcing a subject to select their IDP again from scratch, every time they try to log in to a service using the DSX in embedded mode, is in fact very user-friendly.
In this example we first configure the DSX Discovery Service to be used by the default Shibboleth login handler.
head element if the web page triggering the authentication:
and then display the element itself that triggers the authentication as defined in default handler.
As a result the discovery service is shown as embedded version directly on the embedding web page.
In this example we first set DSX discovery to be used by default sp configuration.
head element on the page triggering the authentication,
and then display an element triggering the authentication.