Hey, I have a website and a chrome extension. What i want to do is when the user logins inside the website, he should automatically login inside the extension as well. This is a business project.

hey @kumar_ayush we don't have good support for chrome extension at the moment. The website login right now works using cookies attached to the api domain, im not sure if browsers allow such a case where cookies will be sent via extensions.

There is a feature where the cookies can be read by the extension using the background script.

i don;'t think httpOnly cookies will fall in that category

If is send the cookie somehow will be able to authenticate

what do you mean?

Hey, I got the cookies. I used the api chrome.cookies.getAll

oh ok! but you need to get them for the api domain on which the supertokens cookies are attached

I will get but there was one problem, I think I might face.

you mean if the acess token has expired?

No, it is said in auth2.0 that if someone steals your tokens and try to login from another device. It will actually logout both the user. Won't this will happen when the extension will use the token, and a new refersh and access tokens will be issed.

if the extension refreshes the session, the new tokens should be attached to the same API domain as the one that the website is querying (on the same browser) - so this shouldnt be an issue

Ok I will implement this then get back to yout.

what is the cookie domain?

@Arne can you help