Hi everyone, been struggling with this for a while and and can't quite understand why it doesn't work. Couldn't find any solid answers though this question has come up before. IMO, this should be an easy thing to accomplish, as it's such a common use case:
Issue
I can't get the refresh tokens to send in the API call.
What I've tried
- During the login step, the Directus backend API returns a access_token and a refresh_token
- I set a Http-Only Cookie for the refresh_token and a session_cookie for the access_token
- The user gets redirected to the next page, on load a refresh token workflow is called that has an interval which makes a Token Refresh call to the Directus API, sending the previously stored Http-Only Cookie in the body
- Despite the inject cookies in body setting, the http cookie is not properly included into the body
- The issue is clearly visible in the Payload body that's sent
- Though I can see that the cookie is properly stored
Expected behaviour
- To have a way to access Http-only cookie values and pass them to API calls
Thanks in advance.
.jpeg/public)