You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
The issue with using cookie store on the frontend in header based auth is that those cookies are not secure. So during page loads, those can be sent over the network even with http.
Therefore, i think we should use localstorage by default. And then only use cookie storage if user has set frontendCookieDomain
The text was updated successfully, but these errors were encountered:
The issue with using cookie store on the frontend in header based auth is that those cookies are not secure. So during page loads, those can be sent over the network even with http.
Therefore, i think we should use localstorage by default. And then only use cookie storage if user has set frontendCookieDomain
The text was updated successfully, but these errors were encountered: