Overview
Some users experience issues when they try to access third-party content via a Canvas integration e.g., loading Zoom in/from Canvas. This can occur in any browser depending on the user's browser security settings related to third-party cookies. For Firefox, Chrome and Edge, users can add exceptions to allow third-party cookies from Zoom or other content providers while maintaining their general browser security settings. Safari does not allow users to add exceptions and it is not recommended to disable all cookie blocking. Because of this, Safari users should use a different browser if they experience third-party cookie blocking when trying to launch third-party content from Canvas.
Issue/Question
When users try to load third-party content from within Canvas, any of the following can occur in the area where the third-party content should load:
- Area is blank
- A message indicating vendor content failed to load
- A message indicating unauthorized access, the session expired, or a stale request
- A message about cookies and needing to load in a new tab
- Gray boxes where content should be, but fail to fully load
Environment
- Firefox, Chrome, Edge, or Safari
- Third-party content in Canvas
Cause/Explanation
Browsers are increasing security settings to provide users with more control over their privacy settings while navigating the web. These security settings are also preventing tools nested within another tool (e.g., Zoom in Canvas) from validating user data required for the nested tool to function properly. For a technical description of the issue, please review the IMS Global Roundtable video on third-party cookies and LTI tools, or review the slides from the IMS Global presentation.
Resolution
To resolve this issue for Chrome, Edge, or Firefox an exception to the browser third-party cookie blocking security settings should be added.
Chrome/Edge: Exempt content in Canvas from third-party cookie blocking
- Log in to Canvas
- Navigate to where the content should appear or is launch from within the Canvas course (i.e. where the issue is occurring) e.g., a new tab may automatically open with the Zoom content. If this happens navigate back to the Canvas page where the Zoom content failed to load.
- Click the "View site information" Icon located at the left the URL address (immediately to the left of canvas.oregonstate.edu)
- Click Cookies and site data
- Toggle on Allow third-party cookies
- Reload the page if needed
Firefox: Exempt Canvas and integrated tools from Enhanced Tracking Protection
- Log in to Canvas
- Click the Shield Icon located to the left of the URL address bar
- Locate the "Enhanced Tracking Protection is ON for this site" message
- Toggle the switch OFF for Enhanced Tracking Protection
- The message should change to "Enhanced Tracking Protection is OFF for this site"
- Reload the page if needed
Safari: No current solution
The Safari browser does not allow users to add exceptions to third-party cookie blocking security settings. Disabling security settings will leave the user vulnerable on the web and is not recommended. At the current time, Safari users who experience issues with Zoom in Canvas will need to use another browser.
For assistance, contact the IS Service Desk.