Next JS Backend cookies
I deployed a Next JS application on Pages and I have configured the cookies to be sameSite:'strict' as it is the most secure.
I noticed that on Cloudflare's side, the server-side calls are not coming from the same domain as the one I access the frontend. Rather, I am seeing different IPs every time I invoke a request.
How is this best remedied? I would set the cookies to Lax/None to alleviate the issue but that would weaken the security. Is there a better way?
I noticed that on Cloudflare's side, the server-side calls are not coming from the same domain as the one I access the frontend. Rather, I am seeing different IPs every time I invoke a request.
How is this best remedied? I would set the cookies to Lax/None to alleviate the issue but that would weaken the security. Is there a better way?
