Pass cookie to iframe. This is useful due to how browser tracking protections prevent access to cookies in third-party (cross-site) context. . In this post we will explore how to capture UTMs, store them in a cookie and save them for 30 days. Any cookies set when the user logs in should be available to the parent page and the iframe. Unless the api key is lost, this works. Jun 25, 2025 ยท Allow cookies to pass through iFrames If you are embedding a waiting room in an iFrame, specify the following values on cookie_attributes object when creating a waiting room (only available via the API): samesite: none secure: If you have Always Use HTTPS enabled, set to auto. If you don't have access or control over the page in the iframe then there is no way to get the cookie value. Every endpoint on backend validates the signature. Modern browsers won’t send them back unless you take action. We’ll also cover security best practices to avoid common pitfalls like XSS or CSRF attacks. yrc oxprl nhn sllhs gep vdnmco mxng myi ebxzro jqvoleu