why do people return jwt token despite setting cookie
I have observed that several backends returns jwt token as response when you hit endpoints like /login
Why isn't setting cookies via header
Why isn't setting cookies via header
set-cookie
