Login Looping - SameSite Errors

PreviousOrganizr Login Error NextAuth cookie is not used by other subdomains

Last updated 3 years ago

Was this helpful?

Options

We will use windows as an example.

The Hosts file in Windows is located at the following location:

C:\Windows\System32\drivers\etc

Here you will see the Hosts file. Right-click on it and select Notepad. Make the changes and Save.

But sometimes, even when you are logged on with administrative credentials, you may receive one of the following error message:

Access to C:\Windows\System32\drivers\etc\ hosts was denied

Cannot create the C:\Windows\System32\drivers\etc\hosts file. Make sure that the path and file name are correct.

In this case, type Notepad in Start search and right-click on the Notepad result. Select Run as administrator. Open the Hosts file, make the necessary changes, and then click Save.

The changes you need to make are like below:

127.0.0.1       hostname

The left value is the IP address and the right value is the hostname or text you want to tie to that IP address. For this fix everything needs to be on the same domain (basically like how subdomains work when reverse proxying).

Note: They must be on the same subdomain for this to work. You can't just do:

<service>.tld, they have to be <service>.something.tld

Router/DNS

Depending on your Router you will need to lookup how to achieve this. Routers usually utilize using Dnsmasq.

This only works if the cookie is not being set with the SameSite property

Chrome

Access this page from your browser chrome://flags

Search for SameSite and disable it.

Note: This was only supposed to be a temporary setting and it seems like Chrome is starting to ignore what this is set to so you'll have to use one of the other options if you try and it doesn't work.

Edge

Access this page from your browser

Search for SameSite and disable it.

FireFox

Search for SameSite and disable it.

Application Errors

Jackett and Tautulli seem to hardcode the SameSite cookie as Lax

Sonarr/Radarr/Lidarr are starting to hardcode the SameSite cookie as Strict

The only way to bypass that is to use Option #1 or Option #2

Options

We will use windows as an example.

The Hosts file in Windows is located at the following location:

C:\Windows\System32\drivers\etc

Here you will see the Hosts file. Right-click on it and select Notepad. Make the changes and Save.

But sometimes, even when you are logged on with administrative credentials, you may receive one of the following error message:

Access to C:\Windows\System32\drivers\etc\ hosts was denied

Cannot create the C:\Windows\System32\drivers\etc\hosts file. Make sure that the path and file name are correct.

In this case, type Notepad in Start search and right-click on the Notepad result. Select Run as administrator. Open the Hosts file, make the necessary changes, and then click Save.

The changes you need to make are like below:

127.0.0.1       hostname

Note: They must be on the same subdomain for this to work. You can't just do:

<service>.tld, they have to be <service>.something.tld

Router/DNS

Depending on your Router you will need to lookup how to achieve this. Routers usually utilize using Dnsmasq.

This only works if the cookie is not being set with the SameSite property

Chrome

Access this page from your browser chrome://flags

Search for SameSite and disable it.

Edge

Access this page from your browser

Search for SameSite and disable it.

FireFox

Access this page from your browser

Search for SameSite and disable it.

Application Errors

Jackett and Tautulli seem to hardcode the SameSite cookie as Lax

Sonarr/Radarr/Lidarr are starting to hardcode the SameSite cookie as Strict

The only way to bypass that is to use Option #1 or Option #2

Login Looping - SameSite Errors

Login Looping - SameSite Errors

Summary

Options

Chrome

Edge

FireFox

Application Errors

Summary

Options

Chrome

Edge

FireFox

Application Errors