[OPENIDM-10192] Backport OPENIDM-10134: self service registration fails with cross-origin restrictions using safari Created: 12/Feb/18  Updated: 09/Mar/18  Resolved: 27/Feb/18

Status: Closed
Project: OpenIDM
Component/s: Module - SelfService
Affects Version/s: OpenIDM 5.0.0
Fix Version/s: OpenIDM, OpenIDM

Type: Bug Priority: Major
Reporter: Mark Offutt [X] (Inactive) Assignee: Mark Offutt [X] (Inactive)
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
is a backport of OPENIDM-10134 Self-service registration fails with ... Closed
Target Version/s:
Verified Version/s:
QA Assignee: Jakub Janoska [X] (Inactive)


After applying fix for -OPENIDM-9976- which resolves the blank page due to a UI dependency error, the following error is reported:

SecurityError (DOM Exception 18): Blocked a frame with origin "https://localhost:8443" from accessing a frame with origin "https://mail.google.com". Protocols, domains, and ports must match.

This is due to the fact that safari appears to have stricter rule with respect to CORs. The only way to see the page is to disable Cross-Origin Restrictions from the Developer menu which is not an option for your standard user.

Here are the steps to reproduce:

Steps to reproduce (IDM 5.0.0):

  1. Configure Email in system preferences - http://localhost:8080/admin/#settings/email/
    1. I used gmail
  2. Enable User Registration - http://localhost:8080/admin/#selfservice/userregistration
  3. enable Email Validation
  4. enable KBA Stage
  5. From the Self-Service UI, using safari in private mode
    1. Register some user - http://localhost:8080/
    2. From within the same safari browser, open email client
    3. Open the registration email and click on (not copy/paste) link from registration email
    4. new tab is opened but is a blank page
    5. if you disable COR you will see the security answers as expected

On MacOS Sierra 10.12.6
Safari Version 10.1.2 (12603.3.8)

Comment by Mark Offutt [X] (Inactive) [ 20/Feb/18 ]

Not sure if this is an issue for 5.5 so need to verify.

Comment by Jakub Janoska [X] (Inactive) [ 23/Feb/18 ]

I am reopening it, as issue is still reproducible on OpenIDM version "" (revision: 608d658) jenkins-OpenIDM - 5.0.x - Release-18 sustaining/5.0.x.

It looks like fix isn't included in this build and also I am seeing open PR in OPENIDM-10047.

Issue is also reproducible on 5.5.

Comment by Jakub Janoska [X] (Inactive) [ 27/Feb/18 ]

 Verified on OpenIDM version "" (revision: 7be154a) jenkins-OpenIDM - 5.0.x - Release-19 sustaining/5.0.x.

Tested OS X & Safari:

  • OS X - Sierra Version 10.12.6 - Safari 10.1.2
  • OS X - Yosemite Version 10.10.5 - Safari 10.1.1
Comment by Jakub Janoska [X] (Inactive) [ 27/Feb/18 ]

Reopening for version => need to be verified

Comment by Jakub Janoska [X] (Inactive) [ 09/Mar/18 ]

 Verified on "" (revision: 3d983e4).


  • OS X Yosemite 10.10.5 - Safari Version 10.1.1 (10603.2.5)
  • macOS Sierra 10.12.6 - Safari Version 10.1.2 (12603.3.8)
Generated at Thu Jan 28 16:27:19 UTC 2021 using Jira 7.13.12#713012-sha1:6e07c38070d5191bbf7353952ed38f111754533a.