• r

    rp

    2 years ago
    No. They should come with secure flag as false. HttpOnly is still true
  • tredstone

    tredstone

    2 years ago
    ok
  • r

    rp

    2 years ago
    @tredstone I recommend to keep the cookies secure to false only for development mode. For production, you should have an SSL certificate and make cookies secure. You can get a free SSL certificate using letsencrypt.org (so I have heard)
  • tredstone

    tredstone

    2 years ago
    will do. I managed to sort out my problem earlier. I've also heard of certbot for SSL cert management as well
  • r

    rp

    2 years ago
    Oh. I haven’t heard of that. But will check it out
  • d

    Deleted User

    2 years ago
    I have an idea i want to work on but im really afraid of using the wrong stack
  • r

    rp

    2 years ago
    What languages do u already know?
  • d

    Deleted User

    2 years ago
    Python javascript
  • d

    Deleted User

    2 years ago
    but wont mind learning something new to try to be the latest best
  • r

    rp

    2 years ago
    I see. Is ur application something that will have a lot of database calls in each API call? Or a lot of computation like matrix multiplications