Postman does not send cookies with the Secure attribute in localhost
patrickReiis opened this issue · comments
Is there an existing issue for this?
- I have searched the tracker for existing similar issues and I know that duplicates will be closed
Describe the Issue
According to this website https://learning.postman.com/docs/sending-requests/cookies/#creating-cookies
secure cookies will only be sent if the URL begins with https:// however according to this website https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Set-Cookie
secure cookies will only be sent if the URL begins with https:// with the exception of LOCALHOST
Steps To Reproduce
- Create a simple node.js server
- Inside the route of your node.js server print the cookies with console.log(req.headers.cookie)
- Open a new request in postman
- Type the URL of your node.js server
- Create a cookie in postman with the Secure atributte
- Make the request
- See your console
Screenshots or Videos
No response
Operating System
Linux/Ubuntu
Postman Version
v9.31.23
Postman Platform
Postman App
Additional Context?
No response
I also sent this to postman support. They directed my here. 😢 I hope this can get fixed because it's confusing and annoying to work around.
My message to support.
According to MDN, when a cookie is set to secure (true), then the cookie should not get set if http was sent, "except on localhost."
I think postman is not following this guideline for localhost.
Is this something that could be fixed or is there a reason why its not like this?
Running into this issue, too
Having this issue.
Running into the same issue here
Any plan to fix this issue in the near future? Just reproduced the issue on Windows using (currently) latest Postman version (10.14.2).
real nice problem
Any updates on this issue?
Having this issue. (v10.14.8)
Having this issue. (v10.14.2)