Middleware for Cookies

Question

Middleware for Cookies

Opened this issue 10 months ago · 0 comments

BoogieMonster1O1 commented 10 months ago

Add middleware for accepting accessToken in a cookie. This will allow HTTP only cookies to be used by the client. HTTP only cookies are not susceptible to XSS attacks as they are not accessible by javascript in the browser. The middleware should take the cookie and put it in the Authorization header; that way it works seamlessly with the existing resolvers.