Skip to main content

Genesys CloudDeprecation: Ability to embed the Genesys Cloud login web application within an iframe

Announced on
(YYYY-MM-DD)
Effective date
(YYYY-MM-DD)
Aha! idea
2026-07-13 2027-02-04 -

On the effective date, Genesys Cloud will deprecate the ability to embed the Genesys Cloud login web application within an iframe. This deprecation helps to protect Genesys Cloud from social engineering or phishing attacks, which could result in a user being tricked into entering their login credentials on a malicious webpage.

This deprecation will occur in two phases:

  • Starting August 31, 2026, new integrations will no longer be able to embed the login web application in an iframe. Existing integrations that currently use the iframe-based authentication will be recorded and added to the exception list and they will continue to work during the transition period.
  • Starting February 4, 2027, for both existing and new integrations, embedding the Genesys Cloud login web application in an iframe is no longer supported. Before the effective date, the existing integrations that currently embed the login web application must be updated to use pop-out authentication.

FAQs

Am I affected?

Your organization is affected if your application embeds the Genesys Cloud login web application within an iframe.

  • Existing integrations that currently use iframe-based authentication will continue to function during the transition period, that is, until February 4, 2027.
  • New integrations created on or after August 31, 2026, must use pop-out authentication. Beginning February 4, 2027, all integrations must use pop-out authentication.
Note: This deprecation relates to the login web application only. The login web application doesn’t have any organization context as it is presented prior to login. For subsequent Genesys Cloud pages, additional embedding restrictions can be applied for your organization via . The settings on the Organization Settings page are unaffected by this deprecation.

What do I need to do before the removal date?

Before the effective date, Genesys recommends that you update any application that embeds the Genesys Cloud login web application within an iframe to use pop-out authentication.

How can I prepare for this deprecation?

If your organization embeds the Genesys Cloud login web application within an iframe, perform the following:

  • Update your application such that it uses pop-out authentication.
  • Test and migrate the application during the transition period.

What if I need help or have questions?

Contact your Genesys account team. You can also visit for additional assistance.