.AspNet.Litium Is not set in CORS requests

Robin.w · April 6, 2021, 10:02am

Hi, when calling an web api that uses _loginService.Login() to log in the user, the set cookie header for the .AspNet.Litium cookie is not present in the response. But if i call the same endpont form the same domain, the set-cookie is there.

Where is this cookie set?
Is there a security check somewhere? Also, if i want to change the SameSite or Secure setting on this cookie, where should i do this?

Thanks

Litium version: 7.6

Spotonkastebo · April 6, 2021, 11:29am

To answer your second question. Depending on version of litium or rather asp.net you can do it from web.config or via url-rewrite.
If you have older version of litium with older version of .net you can’t do it from web.config.

Topic		Replies	Views
Change cookie time for "cart" Questions litium-8	1	625	August 31, 2022
Set cookie options Questions litium-8	1	62	August 28, 2025
How do I configure Litium 8 to cookie-track carts for anons & signedins Questions litium-8	1	373	March 10, 2023
What part of Litium is depending on ASP.NET_SessionId Questions	1	394	September 19, 2019
Cartcontext between sub domains Questions litium-8	5	353	October 31, 2023

.AspNet.Litium Is not set in CORS requests

Related topics