are httpOnly cookies set in server function available in api routes?
preface with, i'm doing something like this with an existing api route that seems to work, so not sure what's going wrong
i have most of my auth logic in server functions. they basically check jwt in the httpOnly cookie, hit the auth server to refresh if needed, and then reset updated cookies. then that sends back the auth'd user and access token to the client
now, i also have an api route
here's the auth server fn's: https://github.com/jackbisceglia/blank/blob/main/packages/web/src/server/auth/route.ts
they universally all use this shared authenticate method: https://github.com/jackbisceglia/blank/blob/main/packages/web/src/server/auth/core.ts
and here's the push endpoint where the cookie isn't read: https://github.com/jackbisceglia/blank/blob/main/packages/web/src/pages/api/sync.push.ts
admittedly i haven't debugged this too deeply beyond some console logs to see what's going on, but wanted to check if i'm making unexpected use of the framework before i dig in too much
i have most of my auth logic in server functions. they basically check jwt in the httpOnly cookie, hit the auth server to refresh if needed, and then reset updated cookies. then that sends back the auth'd user and access token to the client
now, i also have an api route
/apis/sync/pushhere's the auth server fn's: https://github.com/jackbisceglia/blank/blob/main/packages/web/src/server/auth/route.ts
they universally all use this shared authenticate method: https://github.com/jackbisceglia/blank/blob/main/packages/web/src/server/auth/core.ts
and here's the push endpoint where the cookie isn't read: https://github.com/jackbisceglia/blank/blob/main/packages/web/src/pages/api/sync.push.ts
admittedly i haven't debugged this too deeply beyond some console logs to see what's going on, but wanted to check if i'm making unexpected use of the framework before i dig in too much
