HttpOnly cookie not shown in cURL command
Opened this issue · 0 comments
Issue
Generated cURL command doesn't include a Cookie header with authentication cookie. Therefore the curl command won't work on protected endpoints as is.
Detail
When I request an authentication cookie from a server via RestClient, it doesn't show a Set-Cookie header in the response headers.
The cookie is set anyways, because the following requests to protected endpoints will pass.
The generated cURL command doesn't include the Cookie header. (i.e. -H 'Cookie:jwt=eyJh...; Path=/; HttpOnly')
Setting the cookie header manually fails with error Request header "Cookie" is blocked by XMLHttpRequest for security reasons.
Expected behavior
The cookie is included as a part of a cURL command. Requests via (cURL command generated by RESTClient) and (RESTClient itself) have consistent responses.
Version of RESTClient
3.0.7