supertokens-node icon indicating copy to clipboard operation
supertokens-node copied to clipboard

Published 20 hours ago verified publisher icon supertokens

cookieSameSite resolution issue

Open rishabhpoddar opened this issue 2 years ago • 0 comments

When setting websiteDomain to http://127.0.0.1:5173 and apiDomain to http://localhost:3001, then cookieSameSite is resolved to lax, but it should actually resolve to none, and not allow the user to sign in (since http is used on the backend apiDomain)

Another issue is that if using ngrok for frontend and backend, for example:

https://7473-103-36-81-164.ngrok-free.app/ website domain
https://9a89-103-165-71-87.ngrok-free.app/ api domain

The the same site is resolved as lax instead of none

rishabhpoddar avatar Mar 04 '23 16:03 rishabhpoddar