Worked for me after enabling embed framed pages. It was setting the
None as SameSite though instead of
Lax and I was able to view reports within the frame etc.
<!DOCTYPE html> <html lang="en"> <head> <meta charset="UTF-8"> <title>Title</title> </head> <body> <iframe width="100%" height="600" src="https://example.com/index.php?module=Login&action=logme&login=root&password=TOKEN"></iframe> </body> </html>
Can this be tested on Chrome 80 with the "Samesite by default cookies" and "Cookies without Samesite must be secure" flags set as enabled? That is what the default behavior will be when Chrome 80 is launched on Feb 4 and if a cookie is set with SameSite=none without being marked as Secure, it will be blocked.
Works for me after loading on demo2, both w/ and without the settings mentioned by @dm577