The Mystery of
The status: “unknown” response from the Facebook SDK has left many developers scratching their heads. The issue persists even when users successfully log in with Facebook through the popup window, leaving developers puzzled and searching for answers. The internet is full of forums and threads where people have struggled with this same issue.
In our journey to unravel this mystery, we stumbled upon a clue that proved to be a game-changer: the
cross-origin-opener-policy HTTP header. Initially, our website was configured with `cross-origin-opener-policy: same-origin1, which should theoretically be secure and compliant with best practices. However, this header was the silent saboteur preventing Facebook Login from functioning correctly, as it prevented the popup window to communicate back with the opener that the login was succesful.
This blog post has been created with the help of ChatGPT