Hi , I created 2 tenants *public* and *dbe* for te...
# support-questions-legacy
t
Hi , I created 2 tenants public and dbe for testing purpose . https://swaroop-supertokens.d23762scq245us.amplifyapp.com https://swaroop-supertokens-2.d23762scq245us.amplifyapp.com The above 2 domains use public tenant with third-party login (google sign in ) and I am using cookie based approach because I want to share sessions across these 2 domains https://pcc-stage.fairmatic.com/ But the above domain uses dbe tenant with emailpassword login and I am using header based approach here because I don't want the sessions to be shared across this domain . In the recipes (sdk side) I am using thirdpartyemailpassword to support login for both of the tenants . ISSUE : Once I login USER1 to this https://pcc-stage.fairmatic.com/ , the USER2 gets logged out from these two domains https://swaroop-supertokens.d23762scq245us.amplifyapp.com https://swaroop-supertokens-2.d23762scq245us.amplifyapp.com Tried to debug and noticed that refresh api fails with 401 as its not sending the token in the payload . Also it happens in case I logout User 1 from https://pcc-stage.fairmatic.com/ , USER2 gets logged out from https://swaroop-supertokens.d23762scq245us.amplifyapp.com https://swaroop-supertokens-2.d23762scq245us.amplifyapp.com This is strange as it should not happen because the access and refresh token keys are different for cookie and header based . Only key same is front-token