User Profile

Hi there,a few days ago we changed our application/server structure leading to problems with our authentication. What we’re basically doing is SSO using NTLM, by calling a authentication server from client side, returning an authentication token.So if you open a application hosted on domain A the client requests a token from domain B (cors). In case of iOS or MacOs this normally leads to a login prompt as part of the challenge/response handing, but – since we moved to different domains - nothing is showing up and the user is getting a 401.I debugged the problem and stripped it down to a more simpler case by just using a basic html page (domain A) making a xhr request to domain B, that contains a simple auth service which requires basic authentication and therefore also wants some credentials that would be entered in a login prompt – leading to the same behavior.What I’ve read and done so far:Both servers (domain A and B) communicate over httpsA wildcard certificate is used – but if you call domain B directly (without cors) the login prompt is showing upwithCredentials is set on xhr requestThe auth server responds with Access-Control-Allow-Credentials: trueAccess-Control-Allow-Origin: https://domainB.mycompany.com (so no wildcard)Access-Control-Allow-Headers: * (I also tried combinations with "Authorization" and "Origin")Access-Control-Allow-Methods: * (I also tried allowing OPTIONS and GET directly)Tested platform/browser combinations:Windows: IE, Chrome, FF – all workingAndroid: Chrome, Samsung Browser - all workingMacOS: Chrome (working), Safari (not)iOS: Chrome, Safari – both not working (debugging showed same console output as Mac)Unfortunately, i don't know what to test or search anymore and hope someone could help me.Please let me know if you need any more information.Thanks! Denis