firebase cloud function won't store cookie named other than "__session"

javascript firebase cookies google-cloud-functions firebase-hosting
10,858

Solution 1

If you are using Firebase Hosting + Cloud Functions, __session is the only cookie you can store, by design. This is necessary for us to be able to efficiently cache content on the CDN -- we strip all cookies from the request other than __session. This should be documented but doesn't appear to be (oops!). We'll update documentation to reflect this limitation.

Also, you need to set Cache-Control Header as private

res.setHeader('Cache-Control', 'private');

Solution 2

Wow this cost me 2 days of debugging. It is documented (under Hosting > Serve dynamic content and host microservices > Manage cache behavior, but not in a place that I found to be useful -- it is at the very bottom "Using Cookies"). The sample code on Manage Session Cookies they provide uses the cookie name session instead of __session which, in my case, is what caused this problem for me.

Not sure if this is specific to Express.js served via cloud functions only, but that was my use case. The most frustrating part was that when testing locally using firebase serve caching doesn't factor in so it worked just fine.

Share:
10,858
Sagiv Ofek
Author by

Sagiv Ofek

find me at https://sagivo.com

Updated on June 15, 2022

Comments

  • Sagiv Ofek
    Sagiv Ofek almost 2 years

    i followed the sample of authorized-https-endpoint and only added console.log to print the req.cookies, the problem is the cookies are always empty {} I set the cookies using client JS calls and they do save but from some reason, I can't get them on the server side.

    here is the full code of index.js, it's exactly the same as the sample:

    'use strict';

const functions = require('firebase-functions');
const admin = require('firebase-admin');
admin.initializeApp(functions.config().firebase);
const express = require('express');
const cookieParser = require('cookie-parser')();
const cors = require('cors')({origin: true});
const app = express();

const validateFirebaseIdToken = (req, res, next) => {
  console.log(req.cookies); //// <----- issue this is empty {} why?? 
  next();
};

app.use(cors);
app.use(cookieParser);
app.use(validateFirebaseIdToken);
app.get('/hello', (req, res) => {
  res.send(`Hello!!`);
});

exports.app = functions.https.onRequest(app);

    store cookie:

    curl http://FUNCTION_URL/hello --cookie "__session=bar" // req.cookies = {__session: bar}

    doesn't store:

    curl http://FUNCTION_URL/hello --cookie "foo=bar" // req.cookies = {}

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Firebase Function not being deployed in flutter
Not able to access a specific field from a collection in Firebase
Firebase cloud function returns null in Flutter because it's still running
SyntaxError: Cannot use import statement outside a module Firebase Functions
How to use firestore emulator from client
Module not found: Can't resolve 'firebase' in
Expected catch() or return (promise/catch-or-return)
How to solve CORS in firebase functions enviroment?
Why is req.cookies undefined?
How do I find out what the current version of Firebase Tools is