I'm using Google Cloud IAP (Identity Aware Proxy) to restrict access to several services running on different subdomains (a.mycompany.com
, b.mycompany.com
, etc.).
When I log in to a.mycompany.com
, I'd like it to log me in to b.mycompany.com
as well. When I authenticate via one of these URLs, I see this set-cookie
header on the final redirect:
set-cookie: GCP_IAAP_AUTH_TOKEN=eyJh...HsA; path=/; Secure; HttpOnly
My understanding is that I could share this cookie by adding a domain= clause to it. Is it possible to do this with GCP IAP?