Closed ZakariaTalhami closed 4 months ago
Is anyone aware of a better way to implement setting cookies in the header of the response?
I'm not sure this change is needed again. The cookie-based authentication is being implemented with redis
It could be a good idea to encrypt the cookie, a lot of auth libs do this, even if set to httponly
It could be a good idea to encrypt the cookie, a lot of auth libs do this, even if set to httponly
If it's JWT there's no need for it
Changes: