{"id":480,"date":"2022-07-19T15:00:26","date_gmt":"2022-07-19T19:00:26","guid":{"rendered":"https:\/\/blogs.visigo.com\/chriscoulson\/?p=480"},"modified":"2022-07-19T15:38:56","modified_gmt":"2022-07-19T19:38:56","slug":"sharepoint-fba-ssl-required","status":"publish","type":"post","link":"https:\/\/blogs.visigo.com\/chriscoulson\/sharepoint-fba-ssl-required\/","title":{"rendered":"SharePoint FBA: SSL Required"},"content":{"rendered":"

Recent changes in Chrome to improve cookie security required flags being set on the cookies in order for them to continue to function cross-domain. Microsoft released patches to SharePoint to implement the flags – however the flags also require the cookie to be marked SECURE and now only allows the cookies to function with HTTPS\/SSL. Granted you should only be using FBA in production with SSL, however it was convenient to not use it in dev\/test environments. So if you think you have FBA setup correctly, but aren’t able to login – this is most likely the problem. Setup the site to use SSL and it should start working.<\/p>\n

If you have both windows authentication and forms authentication enabled on the same site, and choose to authenticate with windows authentication – even that will no longer work without SSL enabled. You’ll get a “Sorry, Something Went Wrong” – “An unexpected error has occurred.” error.<\/p>\n

\"\"<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"

Recent changes in Chrome to improve cookie security required flags being set on the cookies in order for them to continue to function cross-domain. Microsoft released patches to SharePoint to implement the flags – however the flags also require the cookie to be marked SECURE and now only allows the cookies to function with HTTPS\/SSL. […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[19,5],"tags":[132,20,155,22,154,338],"class_list":["post-480","post","type-post","status-publish","format-standard","hentry","category-forms-based-authentication","category-sharepoint","tag-claims","tag-fba","tag-https","tag-sharepoint-2","tag-ssl","tag-windows-authentication"],"_links":{"self":[{"href":"https:\/\/blogs.visigo.com\/chriscoulson\/wp-json\/wp\/v2\/posts\/480","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/blogs.visigo.com\/chriscoulson\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blogs.visigo.com\/chriscoulson\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blogs.visigo.com\/chriscoulson\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blogs.visigo.com\/chriscoulson\/wp-json\/wp\/v2\/comments?post=480"}],"version-history":[{"count":4,"href":"https:\/\/blogs.visigo.com\/chriscoulson\/wp-json\/wp\/v2\/posts\/480\/revisions"}],"predecessor-version":[{"id":490,"href":"https:\/\/blogs.visigo.com\/chriscoulson\/wp-json\/wp\/v2\/posts\/480\/revisions\/490"}],"wp:attachment":[{"href":"https:\/\/blogs.visigo.com\/chriscoulson\/wp-json\/wp\/v2\/media?parent=480"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blogs.visigo.com\/chriscoulson\/wp-json\/wp\/v2\/categories?post=480"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blogs.visigo.com\/chriscoulson\/wp-json\/wp\/v2\/tags?post=480"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}