Anyone else here, who uses NGINX as reverse proxy ...
# talk-kratosn
numerous-musician-77928
10/08/2021, 1:27 PMAnyone else here, who uses NGINX as reverse proxy in combination with Kratos and receive a [08/Oct/20211326:39 +0000] "GET /kratos//self-service/login/browser HTTP/1.1" 303 103
303 and NO Set-Cookie ?
a
acceptable-train-49219
10/08/2021, 1:41 PMI use nginx and receive the 303, but I do get the set-cookie.
n
numerous-musician-77928
10/08/2021, 3:40 PMOh, just now I see it.. Sorry for delay.
I do not get it.. I just receive "Cookie" ... but not Set-Cookie
a
acceptable-train-49219
10/08/2021, 3:48 PMResponse headers should not contain "Cookie". That header is only for Request headers.
n
numerous-musician-77928
10/08/2021, 3:49 PMBut I don't get where it is coming from...
numerous-musician-77928
10/08/2021, 3:50 PMI directly call the Kratos flow/browser endoint in Browser.
numerous-musician-77928
10/08/2021, 3:50 PMIt's not even the csrf from database...
a
acceptable-train-49219
10/08/2021, 4:07 PMSounds like an nginx config problem.
n
numerous-musician-77928
10/08/2021, 4:11 PMI got it also with oathkeeper...
a
acceptable-train-49219
10/08/2021, 4:23 PMAre you sure you're looking at the response? Can you share a screenshot of the browser tools showing this?
n
numerous-musician-77928
10/08/2021, 4:23 PMOh damn, you are true. I am an idiot 😄
numerous-musician-77928
10/08/2021, 4:23 PMThe entire time..
numerous-musician-77928
10/08/2021, 4:24 PMIts the 303
a
acceptable-train-49219
10/08/2021, 4:32 PMmost likely you already have a cookie set, so there was no need for Kratos to set the cookie again on the response. Check your Dev Tools -> Application -> Cookies list.
4 Views