© 2026 Hedgehog Software, LLC

Twitter GitHub Discord

More

Communities Docs About Terms Privacy

Is setting Jwt and fresh tokens as HTTP only cookies good ? - C#

C#•12mo ago•

3 replies

Is setting Jwt and fresh tokens as HTTP only cookies good ?

I'm building out authentication and currently send JWT and refresh tokens as HTTP only cookies and the backend validates the cookies instead of doing it through the bearer header is this an ok strategy?

We are a programming server aimed at coders discussing everything related to C# (CSharp) and .NET.

62,470Members

Resources

Recent Announcements

Similar Threads

Was this page helpful?

Similar Threads

Cookies and JWT for Authentication

❔ JWT Refresh tokens

Invalidate JWT-Tokens on logout and password change.

Can't add jwt to cookies