🚀 Send JWT via cookie

maqsudtolipov · Sep 3, 2024 · adc80ef · adc80ef
1 parent d704f79
commit adc80ef
Show file tree

Hide file tree

Showing 4 changed files with 36 additions and 0 deletions.
diff --git a/server/controllers/authController.js b/server/controllers/authController.js
@@ -14,10 +14,20 @@ exports.register = catchAsync(async (req, res) => {
 
   const user = await User.create(data);
 
+  // Generate jwt
   const token = jwt.sign({ id: user._id }, process.env.SECRET, {
     expiresIn: '1d',
   });
 
+  // Generate a cookie
+  const cookieOptions = {
+    expiresIn: '1d',
+    httpOnly: true,
+    secure: true,
+    withCredentials: true,
+  };
+  res.cookie('access-token', token, cookieOptions);
+
   res.status(200).json({
     status: 'success',
     token,

diff --git a/server/package-lock.json b/server/package-lock.json
diff --git a/server/package.json b/server/package.json
@@ -10,6 +10,7 @@
   "description": "",
   "dependencies": {
     "bcryptjs": "^2.4.3",
+    "cookie-parser": "^1.4.6",
     "cors": "^2.8.5",
     "dotenv": "^16.4.5",
     "express": "^4.19.2",

diff --git a/server/server.js b/server/server.js
@@ -1,6 +1,7 @@
 const express = require('express');
 const cors = require('cors');
 const mongoose = require('mongoose');
+const cookieParser = require('cookie-parser');
 const dotenv = require('dotenv');
 dotenv.config({ path: './.env' });
 
@@ -13,6 +14,7 @@ const app = express();
 // Middlewares
 app.use(cors());
 app.use(express.json());
+app.use(cookieParser());
 
 // Routes
 app.use('/api/v1/auth', authRouter);