方案一:
缺点:不能设置过期时间,和domain
res.setHeader('Set-Cookie', [ `uid=${uid}`, accessToken=${accessToken}`,`sdktoken=${sdktoken}`]);
方案二:
缺点:只能设置一个,最后一个才生效,uid注入不了
import cookie from 'cookie'
function setCookies(key,value){
if(!value){
return;
}
res.setHeader('Set-Cookie', cookie.serialize(key, String(value), {
httpOnly: true,
maxAge: 60 * 60 * 24 * 7, // 1 week
domain:'.xx.com'
}));
}
setCookies('uid','11');
setCookies('accessToken','22');
与恶龙缠斗过久,自身亦成为恶龙;凝视深渊过久,深渊将回以凝视…