All Questions
43 questions
-1
votes
1
answer
58
views
How can I set cookies using python requests
I am trying to access the cookies of websites, take Wikipedia for example and change their values. I also want to create cookies of my own and put them into my website. For some reason, which I'm not ...
- 3
-1
votes
1
answer
894
views
Golang SetCookie method does not set cookie
I am writing a simple Login handler. Everything works just fine except setting the cookie.
Here is the code :
.
.
.
cookie := &http.Cookie{
Name: credentials.EmailAddress,
...
- 65
0
votes
1
answer
295
views
Set-Cookie header sets cookie to undefined
I have a server that responds with this header (no sensitive info in the token, don't worry)
Set-Cookie: token=eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9....
- 57
0
votes
1
answer
2k
views
Cookie set by "Set-Cookie" not detected for another http request
I have a login process where after a user successfully logs in, a cookie will be set via "Set-Cookie" in the response. I've set up my backend with an authentication middleware that always ...
- 611
1
vote
1
answer
2k
views
Browser not saving cookie sent by Golang backend
I know this question has been asked a bunch of times, but I tried most of the answers and still can't get it to work.
I have a Golang API with net/http package and a JS frontend. I have a function
...
- 812
1
vote
1
answer
535
views
Set-Cookie doesn't set the cookie
There is a well-known Google XSS game (https://xss-game.appspot.com/) that allows you to learn how to find and exploit XSS bugs. The advance to the next level occurs after the user injects a script to ...
- 3,439
0
votes
1
answer
443
views
How do I make custom cookie attributes in http.cookiejar?
I am trying to add a cookie to my python http request that looks something like the following:
{
"domain": ".foo.com",
"hostOnly": false,
"httpOnly"...
- 322
0
votes
1
answer
1k
views
What could cause a browser to not respect set-cookie response headers?
I have a web server which returns 200 OK with a bunch of set-cookies, and an HTML page which loads a bunch of scripts from the same server.
However, the subsequent loads that was spawned from that ...
- 8,140
1
vote
0
answers
581
views
Set-cookie Header doesn't set cookies to the browser
I'm working on a full-stack web application based on React and Nodejs.
I deployed my front-end to the Nelify and backend to the heroku. It was working well at the local machine but there is an issue ...
- 141
1
vote
1
answer
2k
views
Lax vs Strict for Set-Cookie HTTP header and CSRF
I was just reading https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie:
Lax: The cookie is not sent on cross-site requests, such as calls to
load images or frames, but is sent when a ...
- 9,792
0
votes
2
answers
2k
views
Cookie hacking: is it possible to edit them manually?
I think this is not the first time someone askes this question. But I couldn't get a clear answer.
Is it possible to "hack" a cookie? For example, If someone is logged in, I create an 'user ...
1
vote
1
answer
582
views
Set-Cookie header not accepted by javascript fetch
I've been trying for a couple of days now to set a cookie from my web server written in Go, and everything looks right but it just won't work.
My Set-Cookie header:
Set-Cookie: session_token=token; ...
- 51
0
votes
1
answer
3k
views
Can the 'Domain' of set-cookie valued any domain?
Can the 'Domain' of set-cookie valued any domain?
eg:
when login www.google.com,
a xhr to facebook.com is requested
and responsed with a response Header set-cookie:aaa=1;domain=twitter.com.
Will the ...
- 231
2
votes
0
answers
2k
views
Set-Cookie on header yet Cookie is not being set
I have a NestJS Application server being hit from an Angular Webapp. My NestJS server is located at https://api.example.com while my Angular app is hosted at https://example.com
I sent the {...
- 161
2
votes
0
answers
916
views
Redirect after authentication with HttpOnly cookie
My app looks like that:
Client: Angular
Web server: node.js + NestJS
Login page: html document + jQqery served as a static by the server
Auth mechanism: HttpOnly cookie
The user should fill the ...
- 4,434