由于其域属性对当前主机url无效,Set-Cookie被阻塞。
由于其域属性对当前主机url无效,Set-Cookie被阻塞。
提问于 2020-07-06 04:56:57
我有一个使用域sambat.io的react前端,部署到Vercel (Zeit),以及部署到Heroku的Node,该域https://safe-ridge-68566.herokuapp.com/和cookie设置如下:
res.cookie('something', 'ckwdnjwedjbdh3bhbd2hdbhbhbhfbdsf', {
httpOnly: true,
sameSite: 'none',
domain: '.sambat.io',
secure: true
})当我访问前端时,我可以在响应中看到Set-Cookie头,但是它不会设置cookie,并且有以下警告:
此设置-Cookie被阻塞,因为它的域属性对于当前主机url无效。
我错过了什么?
以下是网络请求和响应的详细信息:
GENERAL
Request URL: https://safe-ridge-68566.herokuapp.com/users/twitter
Request Method: POST
Status Code: 201 CreatedRESPONSE HEADERS
Access-Control-Allow-Credentials: true
Access-Control-Allow-Origin: https://sambat.io
Connection: keep-alive
Content-Type: application/json; charset=utf-8
Set-Cookie: something=hwjdhwjdhwjehdjwdhuhhd3hd3u; Domain=.sambat.io; Path=/; HttpOnly; Secure; SameSite=None
Vary: OriginREQUEST HEADERS
Accept: application/json, text/plain, */*
Connection: keep-alive
Content-Type: application/json
Cookie: something=hwjdhwjdhwjehdjwdhuhhd3hd3u
Host: safe-ridge-68566.herokuapp.com
Origin: https://sambat.io
Pragma: no-cache
Referer: https://sambat.io/
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-siteStack Overflow用户
发布于 2022-10-19 14:45:14
我也犯了同样的错误。创建cookieOptions时服务器端出现问题
var cookieOptions = new CookieOptions
{
HttpOnly = true,
Expires = DateTime.UtcNow.AddDays(7),
SameSite = SameSiteMode.None,
Secure = true,
Domain = "https://example.com" <-- problem's here
};删除并解决问题:)
var cookieOptions = new CookieOptions
{
HttpOnly = true,
Expires = DateTime.UtcNow.AddDays(7),
SameSite = SameSiteMode.None,
Secure = true,
Domain = "example.com" <-- like this
};页面原文内容由Stack Overflow提供。腾讯云小微IT领域专用引擎提供翻译支持
原文链接:
https://stackoverflow.com/questions/62749492
复制相关文章
相似问题
腾讯云开发者
