I just learned that if the jwt is stored in a cookie and is set to httpOnly then when I use fetch , I dont need to sent jwt. The cookie gets send automatically if I put “credentials” attribute in the header. Is this true ? If yes then how do I put those jwt in a httpOnly cookie?
Pardon If my explanation confuses you. I’m already bit lost in this subject and English is not my 1st language.
I also found success in backend side by creating a file under User & Permissions plugin and I customized it on backend rather than of frontend side API but when I send a request to backend to fetch data the cookies aren’t extracted from cookies section and can’t store jwt from it. We should collab to figure it out.
what do you say ?