Why does my HttpOnly Flag Cookie not get saved?
I have a .Net Core Backend running and its access point for request is http://localhost:5108/graphql/
If I execute a request from this endpoint I get back the cookie and my Browser saves it.
If I execute this from my fronted which runs on a different Port my cookie won't get saved. My Backend and my frontend uses currently http and not https
Here you can see that it does not get saved:
My cookie has the following parameters that are set in my backend:
httpOnly: true
path: "/"
samesite: "None"
secure: true
How can the frontend browser save the cookie now?
Solution
I solved it.
I had to add withCredentials: true
export function apolloOptionsFactory(): ApolloClientOptions<any> {
const httpLink = inject(HttpLink);
return {
// link: httpLink.create({ uri }),
link: httpLink.create({ uri, withCredentials: true }),
cache: new InMemoryCache(),
};
}
- MSAL for non-SPA? Server side authentication?
- Where to store the refresh token on the Client?
- How to guard nestjs swagger endpoint
- How to Validate Current Password Against User Input Using Laravel Validator?
- getPocket API - iOS
- Is it a good idea to add UTC timestamp for API authentication
- Which HTTP response code should I give my application to say that authentication was successful?
- Error:Request failed: bad request (400) login via afnetworking in swift
- What is an API token
- Can you get your Twitter email using the API?
- Keep getting CallbackRouteError fired when trying to use signIn function in (next-)authjs v5
- I tried to change postgresql md5 to scram-sha-256 and I get FATAL password authentication failed
- Google Authenticator on Apple devices, certain secrets are not valid
- Tiktok client key
- REST API Authentication
- robin_stocks Robinhood Authentication Stopped Working
- AppwriteException: User (role: guest) missing scope (account), not able to get account after creating a session
- Jboss 7 custom authenticator
- How do the ASP.NET Core 5 OpenIdConnect authentication cookies work in theory?
- JWT refresh token flow
- Laravel attempt() method is undefined (JWT)
- Allow App Service to be called by just a test user and another App Service using a system assigned managed identity
- Call to undefined method Laravel\Passport\Passport::routes()
- Flutterflow: Determining a User's Supabase Authentication Method
- Python request with authentication (access_token)
- How to properly access ProtectedLocalStorage after login using NavigationManager.NavigateTo()
- Python OPC-UA : authentification
- EventGrid Trigger on Authenticated Azure Function App
- Identity Server 4 - Unable to authenticate user
- Transferring Authentication State from Prerendering mode to Interactive Rendering mode in Blazor WebApp