The only two pitfalls that I’m aware of are:
- asset canister CSP: Your asset canister(s) may have a content security policy set for it to only accept assets from the old domain. Check in your
.ic-assets.json
files (if present) - Internet Identity login produces different IDs when logging in through a different domain. This is a limitation/feature of how WebAuth works