I have a problem with secure httpOnly cookie in production, on localhost it works fine.
My strapi backend is on api.domain.com and my react frontend is on app.domain.com. Both are hosted on DigitalOcean App Platform and CNAME records has been added.
Now I have a login form and then on successful login it should set a secure httpOnly cookie, but instead of that I get an 500 internal server error and in the logs it states:
I’m having the same issues sivouz. can you post your config file, I’m not quite sure where to put this proxy value and any documentation for it to what it is doing?
It would be great to get ‘send auth as a cookie’ into the base version as an option. I assume I’ll need to patch around the cookie implementation whenever there is an upgrade (sry still new to Strapi - haven’t crossed the update bridge yet)