My Mendix app runs inside SAP Service Cloud V2 in an iframe. The iframe URL points to a URL microflow, which then opens a page in our Mendix app.This works correctly, including SSO.On one screen, I open a wizard. The final wizard step contains an iframe that loads an OpenText page. The first time the user reaches this step, they must log in to OpenText via SSO. The SSO login succeeds.However, after the OpenText login completes, clicking buttons outside the iframe, such as Close Page, appears to refresh the OpenText iframe. The button becomes greyed out, and the user gets stuck on the page. I verified in the debugger that the button microflow is triggered, but the page does not close.If I then open the same URL again in SAP Service Cloud, everything works correctly, including the wizard buttons.When I clear my cookies and repeat the process, I must log in again to both SAP Service Cloud and OpenText, and the issue happens again.So the issue only occurs on the first OpenText SSO login inside the iframe. After the session/cookies are established, the wizard works normally.I’m not sure what causes this or how to fix it. Does anyone have suggestions?
asked
Ajay Gopal
1 answers
0
Hi Ajay Gopal
Nested iframes (SAP → Mendix → OpenText). On the first OpenText login, its SSO redirect chain is still running inside the iframe. When you click a Mendix button, the OpenText iframe reloads ("refresh"), which churns the page and drops the client-side action so the microflow runs server-side but Close Page never applies (button stays greyed). Second visit: cookies already exist → no redirect → works. Do the OpenText SSO login in a popup (window.open), not the nested iframe. Load OpenText content in the iframe only after login. No redirect chain during wizard = no churn. This alone usually fixes it. SameSite=None; Secure on all layers Mendix com.mendix.core.SameSiteCookies = None, plus the same (or CHIPS/partitioned) on OpenText/IdP cookies, since the OpenText frame is third-party. Stabilize the iframe — keep its src/visibility static so Mendix re-renders don't reload it. Confirm it by In DevTools → Network, click Close Page during first login and watch for the OpenText iframe issuing a reload at that moment; check console for blocked cross-site cookie warnings.