stackoom
  简体   繁体   中英

Set-cookie in response header but not set in browser

 原文  2018-11-24 07:00:51       typescript/ express/ cookies/ graphql/ apollo-server

Question

I built a GraphQL server using apollo-server-express , and run it on localhost:4000.

When I pass the query from GraphQL playground, the response has set-cookie in the header as below: response header

But in storage > cookies tab in chrome, there are no cookies. chrome: application > storage > cookies

Here is my server.ts. (I think I set my cors config in correct way) 

const server = new ApolloServer({
  typeDefs,
  resolvers,
  introspection: true,
  playground: true,
  dataSources: () => ({
    projectAPI: new ProjectAPI(),
  }),
  context: ({ req, res }: { req: Request; res: Response }) => ({ req, res }),
})

const app = express()

/* Parse cookie header and populate req.cookies */
app.use(cookieParser())

app.use(
  cors({
    origin: '*',
    credentials: true, // <-- REQUIRED backend setting
  })
)

app.use((req: any, res: any, next: any) => {
    console.log(req.cookies)
    next()
})

server.applyMiddleware({ app, path: '/' })

if (process.env.NODE_ENV !== 'test') {
  app.listen({ port: 4000 }, () =>
    console.log(`🚀 Server ready at http://localhost:4000${server.graphqlPath}`)
  )
}

export { server }

And here is my resolvers.ts : 

export default {
  Query: {
    session: async (_: null | undefined, __: null | undefined, { res }: any) => {
      const response = await fetch(`http://localhost:3000/api/v1/sessions/current_user`, {
        headers: {
          'content-type': 'application/json',
        },
      })

      /** Get session cookie from the response header */
      const sessionCookie = setCookie
        .parse(response.headers.get('set-cookie') as string)
        .find((el: any) => el.name === '_session')

      /** If session cookie exists, save the cookie */
      if (sessionCookie && res) {
        const { name, value, ...rest } = sessionCookie
        res.cookie(name, value, rest)
      }

      const data = await response.json()
      return data.user
    },

1 answers

solution1
 0  2018-12-01 16:49:50

Are you using apollo-client on the client side?

If so, you need to add the credentials option when you create the terminating http link (or batch link etc). If not using apollo-client, you just need to add in this option accordingly. 

const OPTS = {
  uri: GQL_BASE,
  credentials: 'include', // or 'same-origin' etc.
  includeExtensions: true,
}

const httpLink = new BatchHttpLink(OPTS)

You are correct, that you also need credentials: true added in the CORS options.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question this attempt to set a cookie via set-cookie header was blocked fetch the jwt value from Set-Cookie header in typescript Angular 8 get “Set-Cookie” header from HttpResponse How to set cookie for a different website when open new browser tab How can I set a header field in a response with NestJS? Couldn't set cookie using ngx-cookie-service Set Cookie in Request Headers Angular2 How to set HTTP only cookie in NestJS Cannot set cookie with Nest.js CSRF Token is not set..How to set CSRF cookie in Typescript?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM