Cookies blocked on http localhost for Ffox and Chrome

[weisisheng]

I notice this code sets cookies correctly:

  const encryptedSession = await signToken(session);
  (await cookies()).set('session', encryptedSession, {
    expires: expiresInOneDay,
    httpOnly: true,
    secure: true,
    sameSite: 'lax',
  });

Still my cookies get blocked and so I don't get a valid login. Appreciate any trailheads, tips, tricks. TIA.

[weisisheng]

I know I am threatening a curse from the auth gods, just commented these out so I can get exploring:

// secure: true,
// sameSite: 'lax',

[tadeumaia]

Chrome works correctly for me, but localhost safari is broken.

[csarnoult]

localhost safari is broken for me, too. And like @tadeumaia, my chrome works just fine. I'm unsure what the issue is with Safari. Is anyone else having this problem and do you know a solution?

[tadeumaia]

localhost safari is broken for me, too. And like @tadeumaia, my chrome works just fine. I'm unsure what the issue is with Safari. Is anyone else having this problem and do you know a solution?

Through trial and error I found out secure: true does not work on safari localhost. Configuring it to change depending on the ENV.prod fixed it for me. Change it at the login set session function.

[chungweileong94]

Both secure and sameSite options only works with https.
You can either conditionally turn off the options on local development, or create your own self-signed SSL by running next dev --experimental-https.