-
Notifications
You must be signed in to change notification settings - Fork 143
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
HttpOnly not being set #72
Comments
The cookie.parse function (https://github.com/jshttp/cookie/blob/master/README.md#cookieparsestr-options) only parses the HTTP "Cookie" header. Your example is the HTTP "Set-Cookie" header. |
My bad, thanks for the clarification! |
@dougwilson @Zelein I'm confused. If I have I'd expect the above example to return:
|
This module only handles the Cookie Header, not the Set-Cookie Header. Sorry if this is incorrect, I'm coming into this cold having not looked at this since my previous comment. |
@Zelein Thanks. Perhaps set-cookie-parser would be more up my alley. |
No, just use a module that parses the set-cookie header. Many already exist. Why add more duplicate modules? |
I'm building a cookie that uses HttpOnly, but
cookie
is not outputting the HttpOnly attribute.cookie.parse("mytoken=test; Domain=.example.com; Path=/; Expires=Thu, 25 Jan 2018 17:21:33 GMT; HttpOnly")
The text was updated successfully, but these errors were encountered: