Channels
bot-training
community
contributing
general
github-activity
info
introductions
new-releases
random
security
support-questions
welcome-0xdelusion
welcome-aj-ya
welcome-aleksandrc
welcome-alpinjs
welcome-amberlamps1
welcome-andrew-rodriguez
welcome-ankit-choudhary
welcome-anthony-stod-custodio
welcome-call-in
welcome-chwalbox
welcome-claybiokiller
welcome-co7e
welcome-cosmoecwsa
welcome-devdag
welcome-dinso
welcome-drebotelho
welcome-elio
welcome-ernest
welcome-foxbarrington
welcome-fromscratch
welcome-galto4ir
welcome-goetzum
welcome-hay-kot
welcome-himanshu-kukreja
welcome-hossambarakat
welcome-ichikawakazuto
welcome-jahir9991
welcome-jamesl
welcome-jerry123424
welcome-john-oliver
welcome-jonas-alexanderson
welcome-jxyz
welcome-kelvinwop
welcome-kraz
welcome-lancekey
welcome-leoo
welcome-lukeacollins
welcome-m-j-mon
welcome-malik-khoja
welcome-marco
welcome-mardadi
welcome-meshguy
welcome-metamorph
welcome-mike-tectu
welcome-mirzok
welcome-mozomig
welcome-naberyou66_
welcome-nacer
welcome-namratha
welcome-naveenkumar
welcome-nightlight
welcome-nischith
welcome-notankit
welcome-olawumi
welcome-pavan-kumar-reddy-n
welcome-pineappaul
welcome-poothebear
welcome-rick
welcome-samuel-qosenergy
welcome-samuelstroschein
welcome-shubhamgoel23
welcome-shubhamkaushal
welcome-sidebar
welcome-surajsli
welcome-suyash_
welcome-syntaxerror
welcome-tauno
welcome-tawnoz
welcome-teclali
welcome-tls
welcome-turbosepp
welcome-vikram_shadow
Title
g
gwenael
10/24/2022, 10:11 AMhow we can set the cookie for all our domains
n
nkshah2
10/24/2022, 10:12 AMHi @gwenael,
Are all the different BOs on sub domains?
g
gwenael
10/24/2022, 10:14 AMour context is different because our backoffices are on
xxx.domain1.com
yyy.domain2.com
zzz.domain3.com
n
nkshah2
10/24/2022, 10:16 AMWhat are you using on your API layer?
g
gwenael
10/24/2022, 10:19 AMthe Auth is separated from the business API.
- we use NodeJs for the auth API
- we use 2 different APIs in PHP for each backoffice
r
rp
10/24/2022, 10:21 AMYou can’t set cookies across top level domains.
The way to solve this would be to create individual sessions for each of the api domains
Or, you could enable JWT based auth and send a JWT to these domains for session management.
g
gwenael
10/24/2022, 10:24 AMthanks
r
rp
10/24/2022, 10:25 AMDo these backend domains all have the same frontend (on the same url) or different frontends?
g
gwenael
10/24/2022, 10:26 AMdifferent urls because we have our old BO and our new BO and we want to use a unique auth solution for both.
r
rp
10/24/2022, 10:27 AMI see. Then it’s best if you have different sessions for all of these and not try and share the same session
g
gwenael
10/24/2022, 10:27 AMok
but your solution is very cool.
r
rp
10/24/2022, 10:28 AMThanks