How to correctly configure secure cookies

timelytree · November 11, 2020, 6:18pm

I’m hoping you can help me out again.

I’ve got 2 Node Web services (Nuxt frontend and Express backend, different domains) on Render that are running well with no apparent issues except… cookies that are generated in the backend are not being received on the frontend (set-cookie header is missing). My cookie is configured as such:

cookie: {
  maxAge: 24 * 60 * 60 * 1000, // Expires in 24hrs
  httpOnly: true,
  sameSite: 'none',
  secure: true
}

There are some reports online that load-balanced setups need to proxy any cookies (https://serverfault.com/questions/601498/cookies-not-setting-in-load-balanced-environment) - could this potentially be the issue?

Do you have any insight as to how to securely configure cookies on your Web Services so that they can be sent between those Web Services?

Thanks in advance!

Christos_Alexiou · June 16, 2022, 12:15pm

Hey,

I am facing the same problem. Did you manage to overcome this @timelytree?

Best regards.

timelytree · June 16, 2022, 2:55pm

Hey @Christos_Alexiou,

We actually decided to roll our own backend around the time of my original posting so unfortunately I can’t provide any advice.

Best of luck!!

al_ps · July 16, 2022, 2:56pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.

Topic		Replies	Views
Trouble understanding Express-session with Render	4	1039	November 13, 2022
Session Cookies getting blocked	1	238	March 31, 2023
Passing cookies from frontend to backend	3	195	March 23, 2024
Cookie doesn't send to browser	2	2480	April 10, 2023
Third party cookies must be enabled to set cookie on the browser	5	3477	June 13, 2023

How to correctly configure secure cookies

Related Topics