I currently have the loopbackJS api hosted on a particular domain, with third party authentication setup via Auth0.
loopback-component-passport seems to work fine when the front-end is on the same domain, and it sets the `userId` and `access_token` cookies accordingly.
However, my front-end in production is on a different domain to the API, for example the API auth link would be something like:
"http://domain1.com/auth/auth0?returnTo=" + encodeURIComponent("http://domain2.com") since the front-end is on
domain2
I can't seem to get the access token communicated after the user logs in through Auth0. It redirects to
domain2.com fine, but after that the app there has no idea what the access token is to access the API.
Was there a particular workflow that I should be following in this case?