await session.save() fails to set cookie if cookies.set() is used after

Question

await session.save() fails to set cookie if cookies.set() is used after

Emrin opened this issue 6 months ago · comments

I tested this in middleware and any invocation of response.cookies.set() on a NextResponse after saving the session with await session.save() will not set the new session as a cookie.

Caleb Joshua · Answer 1 · Tue Feb 06 2024 14:26:58 GMT+0800 (China Standard Time)

Same here, cookie won't update on session.save() if another cookie has been set using document.setCookie()

romeobravo · Answer 2 · Mon Mar 18 2024 22:58:03 GMT+0800 (China Standard Time)

I can confirm this issue. We are chaining middleware functions together.

Simplified examples:

function setCookieMiddleware(req, res, ctx) {
  res.cookies.set('foo', 'bar', { httpOnly: false })
  return res
}

async function saveSessionMiddleware(req, res, ctx) {
  ctx.session.foo = 'bar'
  await ctx.session.save()

  return response
}


// DOES NOT WORK: session cookie is not set in response headers, only foo cookie is present
const middlewares = [
  saveSessionMiddleware,
  setCookieMiddleware,
]

// DOES WORK: both session cookie and foo cookie Set Cookie header present in response headers
const middlewares = [
  setCookieMiddleware,
  saveSessionMiddleware,
]

Vincent Voyer · Answer 3 · Fri Jun 14 2024 21:24:14 GMT+0800 (China Standard Time)

Hey there, can someone create a very minimal example that I can run? It would be the best way to solve this issue, thanks!