I am evaluating Asana, and although I think it’s the right speed, it is conflicting with organization policy. We whitelist cookies, and I need to disable our entire cookie policy to properly log into your site. This is probably complicated by our use of Gsuite, but I haven’t had any problems like this with other sites… like a certain product that starts with a J, which is who we are fleeing from. Asana also seems to have a habit of redirecting when there are issues, which makes it difficult to determine where the cookies are coming from. I have been whitelisting what I can, and the somewhat limited list I’ve come up with so far is:
https://.asana.com
https://.cloudfront.net (not too happy about this)
https://.google.com
https://.googleapis.com
Is there a list of things I’ll need to whitelist to get this working? A little more refinement would be nice too. A blanket whitelist of CloudFront might be a deal breaker.
Thanks,
Scott