Menu
I cant seem to find a way to set a secure cookie in expressjs framework. Is there an option to do this somewhere?
547
If you are behind a proxy, you also have to ensure it is sending the X-Forwarded-Proto header and that you set the proxy option:
app.use(express.session({
proxy: true,
secret: 'test',
cookie: {
secure: true
}
}));
Alternatively, you can tell Express to trust the proxy globally:
app.set('trust proxy', 1)
Based on the documentation, try this:
res.cookie('rememberme', 'yes', { expires: new Date(Date.now() + 900000), httpOnly: true, secure: true });
Using res.cookie(name, val[, options]) sets the given cookie name to val, with options httpOnly, secure, expires, etc. The path option defaults to the app’s basepath setting, which is typically "/".
See the docs for res.cookie for more details.
43
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With
