-
Notifications
You must be signed in to change notification settings - Fork 289
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Support one unified cookie with a custom name, such as __session
, for Firebase hosting
#190
Comments
Is there any way to whitelist other cookies in Firebase hosting? I didn't see one, unfortunately. There's not currently a built-in way to set one cookie named |
__session
, for Firebase hosting
Jeah there is no way around it; and I am breaking my head around this crazy limitation given the fact that this problems exists for any service providing dynamic content through firebase hosting... 😱 As an intermediate solution what would you think of disabling cookie signing when using "unified cookie"?! As far as I see it signing only makes sense when there is the possibility to separate the signature from the value. |
a single unified cookie is required in order to make server side authentication work in firebase hosting scenarions. since firebase hosting only allows you to use on single cookie; cookies.signed will default to false when cookies.unified is set to true - related to github.com/gladly-team/issues/190
I think the right approach would be for this package to always use a single cookie and allow the user to customize the cookie's full name, not just the prefix (as it does now). See #192 (comment) for more discussion. |
a single unified cookie is required in order to make server side authentication work in firebase hosting scenarions. since firebase hosting only allows you to use on single cookie; cookies.signed will default to false when cookies.unified is set to true - related to github.com/gladly-team/issues/190
a single unified cookie is required in order to make server side authentication work in firebase hosting scenarions. since firebase hosting only allows you to use on single cookie; cookies.signed will default to false when cookies.unified is set to true - related to github.com/gladly-team/issues/190
This might be made unnecessary if we implement #287. |
Describe the bug
Serverside authentication doesn't work in firebase hosting because all cookies are being stripped but a cookie named
__session
is allowed. Is it possible to configure cookies so this also works in firebase hosting?From firebase docs:
https://firebase.google.com/docs/hosting/manage-cache#using_cookies
Version
What version of
next-firebase-auth
are you using?v13.1.0
To Reproduce
Steps to reproduce the behavior:
Expected behavior
Being able to use server side authentication with the cookie named
__session
as described in firebase documentationThe text was updated successfully, but these errors were encountered: