Chrome doesn't send cookies after redirect

Question

In node.js (using Hapi framework) I\'m creating link for user to allow my app reading user account. Google handles that request and asks about giving permissions. Then Googl

Answer 1

This issue is caused by hapi-auth-cookie not dealing yet with isSameSite (new feature of Hapi). We can set it manually, eg.

const server = new Hapi.Server(
    connections: {
        state: {
            isSameSite: 'Lax'
        }
    }
);

But please consider that, by default you have 'Strict' option, and in many cases you may not want to change that value.