basically what the headline says:
Cookie in Auth sets the JWT-Cookie to http only but doesn't read from the Cookie header, how am I supposed to pass the jwt cookie to the backend if js cannot read the cookie and put it as Bearer into an Authorization Header?
I would expect that either
the server tries to read from the Cookies header
the server doesn't set http-only by default
where I would prefer the former.
basically what the headline says:
CookieinAuthsets the JWT-Cookie to http only but doesn't read from theCookieheader, how am I supposed to pass the jwt cookie to the backend if js cannot read the cookie and put it as Bearer into an Authorization Header?I would expect that either
Cookiesheader