https://supertokens.com/ logo
Join Discord
Powered by
Hey there. I resumed my work today implementing th...
# contributing
d
Hey there. I resumed my work today implementing the session recipe and I'm basing it on this: https://app.swaggerhub.com/apis/supertokens/FDI/1.13.1 What is rid supposed to be here? the recipe id?
r
hey @Diegovsky
d
hello
r
on the backend SDK, the user can initialise several recipes
And those recipes may have APIs exposed on the same path and method
the 
rid
header helps the SDK know which recipe the request is for.
d
yes, my question was whether 
rid
stood for session id
r
no. It's not the same as session ID
d
oh sorry, I meant recipe id
r
ah right.. yea. missed that in your question
it is the recipe id indeed
there is one special case though -> when the user is querying their own API, the `rid`'s value is set to 
anti-csrf
by our frontend SDK
that's not a recipe. But it's a way to protect against CSRF attacks
d
btw, the site says the 
signout
does not need any cookies to work, is that right?
ah, I see
r
d
it's a very complex and modular api
r
> btw, the site says the signout does not need any cookies to work, is that right? Huh.. it does need cookies. Where did you read that?
d
here, specifically
r
oh right yea.. that's missing. It does need cookies to work
thanks for pointing that out
d
np
r
it needs the 
sIdRefreshToken
and 
sAccessToken
d
thanks, was about to ask :)
r
🙂
5 Views
Next
Powered by