deffemttg
Explore posts from serversTTCTheo's Typesafe Cult
•Created by deffemttg on 5/19/2023 in #questions
Set cookies to a different domain
Hi guys, I'm trying out Clark for a multi-domain SaaS project in Next I'm building and I need some help to better understand where I can fix some cookie problems 🥁.
To make it simple this app is divided in three parts:
- the root domain, example.com, with all the landing page and the marketing stuff
- the account sub domain, account.example.com, where the auth is located (signin/signup pages, etc) and where clients can do some settings stuff
- arbitrary amount of custom sub domain, [anything].example.com, where each user will be able to use their own version of the software
In Next all of this is possible thanks to some tricks in the
middleware.ts, I'll leave this here if someone is interested (https://vercel.com/guides/nextjs-multi-tenant-application).
Back to the problem:
Since the login happens in the account.example.com the *__session *cookie is set to the domain "account.example.com". Once the logged user goes to his own app, lets say "jack.example.com", the browser will not show the __session cookie, and so the authentication fails.
After some online research I discovered that if the domain of the cookie is set to the root domain "example.com", all the subdomains will be able to access this cookie!
And now I'm stuck here, trying to understand what/when/how to set the clerks cookies with the root domain.
Any help is really appreciated, thank you ^^2 replies