Hi, I've implemented basic authentication with sessions using express-session and I'm storing my sessions in redis using connect-redis. Now when the user logs in a set-cookie header is sent and then on every request I get a cookie header. Now my question is what should I do with this cookie that I'm getting with every request? How do I verify this cookie? Like somebody can change the cookie and send it back to me. Also cookie-parser is not used with express-session anymore. Plz guide me since I'm new to all this.
Submitted August 01, 2018 at 02:48PM by rizwanahmed19
No comments:
Post a Comment