Hey! Not really a support question but I don't know where else to ask this. I have an API for mobile apps that will be used by a web app in the near future. The API and the auth service live in different services (auth.x.app and api.x.app). Can I use http only cookies for the web app under these circumstances? How would be the process?