Home >Backend Development >Golang >Why Does My Browser Refuse to Accept Cookies from a Cross-Origin Response?
Why Does My Browser Refuse to Accept Cookies from a Cross-Origin Response?
- Linda HamiltonOriginal
- 2024-11-21 00:23:12366browse
Browser Refuses to Honor Set-Cookie Header from Cross-Origin Response
Your application is encountering difficulties setting an HTTP cookie from the backend and retrieving it for subsequent requests. To resolve this issue, you need to address the placement of withCredentials in your client code.
Instead of:
const axiosAuth = axios.create({
validateStatus: (status: number) => {
return status >= 200 && status < 300;
},
headers: {
Accept: `application/json`,
'Content-Type': 'application/json',
withCredentials: true, // Incorrect
},
});You should have:
const axiosAuth = axios.create({
validateStatus: (status: number) => {
return status >= 200 && status < 300;
},
headers: {
Accept: `application/json`,
'Content-Type': 'application/json',
},
withCredentials: true, // Correct
});
Placing withCredentials as a request property, as seen in the corrected code, enables the browser to send and receive cookies for cross-origin requests. This will allow your front end to properly set and access the refreshToken cookie for authentication purposes.
The above is the detailed content of Why Does My Browser Refuse to Accept Cookies from a Cross-Origin Response?. For more information, please follow other related articles on the PHP Chinese website!
Related articles
See more- How to Handle Panics in Go Routines: Understanding Recover Scope?
- How to Efficiently Get a Specific Time for the Following Day in Go?
- How Can I Use Reflection to Call the Variadic `Rows.Scan()` Function in Go?
- What Does 'Vendoring a Dependency' Mean in Go?
- How Can I Update Legacy Go Code Using `os.Time()` to Modern Timestamp Handling with `time.Now()`?