Safari Cookies Not Working with Express.js App

-

 

Problem

  • The app worked fine in Chrome/Firefox/Edge, but in Safari:

    • Cookies were not being set properly.

    • As a result, protected routes could not be accessed.

  • Setup:

    • Frontend: Vercel (https://mahisterpieces.in)

    • Backend: Railway (https://mahisterpieces-production.up.railway.app)

Root Cause

Safari enforces stricter cookie rules due to Intelligent Tracking Prevention (ITP):

  • Cookies set across different domains are treated as third-party cookies → blocked in Safari.

  • Our frontend and backend were on different domains (mahisterpieces.in vs railway.app).

  • Cookies with SameSite=None also require Secure and HTTPS.

Thus, Safari dropped the backend cookies.

Solution

1. Custom Subdomain for Backend

  • Created a subdomain: api.mahisterpieces.in

  • Added a CNAME record in Vercel DNS pointing api → m9q66juq.up.railway.app (Railway’s verification target).

  • Verified the domain in Railway → Domains, which issued an SSL cert.

  • Now both frontend and backend share the same root domain → cookies are first-party in Safari.

2. Backend Configuration

  • Updated Express cookie settings:

    res.cookie("token", token, {
  httpOnly: true,
  secure: true,        // HTTPS required
  sameSite: "Lax",     // first-party safe in Safari
  domain: ".mahisterpieces.in"
});

  • Updated CORS:

    app.use(cors({
  origin: "https://mahisterpieces.in",
  credentials: true
}));

3. Frontend Configuration

  • Updated VITE_API_URL to:

    https://api.mahisterpieces.in

  • Ensured API requests send cookies:

    axios.post(`${import.meta.env.VITE_API_URL}/login`, data, {
  withCredentials: true
});

Outcome

  • Cookies are now treated as first-party in Safari.

  • Login + protected routes work across all browsers.

  • Deployment domains are cleaner:

    • Frontend → mahisterpieces.in

    • Backend → api.mahisterpieces.in

Learning:
When using cookies for auth, always put frontend and backend under the same root domain (e.g., example.com + api.example.com). Safari will block cookies otherwise.

Comments

Post a Comment

Popular posts from this blog

What Is Trading? Beginners Guide.

-
Image
What is Trading? Trade is a primary economic concept which involves buying and selling of commodities and services, along with a compensation paid by a buyer to a seller. In another case, trading can be an exchange of commodities/services between parties, mostly in return of money. Trade can occur between producers and consumers within an economy. What are the advantages of Trading? Traders can work for financial institutions, in which case they will trade via the funds and credits of a company, and they are paid a combination of bonus and salary. As another option, traders can work for themselves too, as in they can trade with their own money and credit. However, with this option they will also keep all of the profit to themselves. How does trading work? When you trade, you profit if the market price of your position moves in the right direction, and you lose money if the price of your position moves in the wrong direction. It can be risky to dive in without the proper knowledge The b...
Read more

Oasis Infobyte Virtual Internship

-
OIBSIP Experience of My Internship Journey with Oasis Infobyte My internship journey with Oasis Infobyte was an enriching and transformative experience. As a web development and designing intern, I had the opportunity to work on real-world projects, gain valuable practical skills, and learn from experienced colleagues. One of the most rewarding aspects of my internship was the opportunity to work on a variety of projects, including a landing page, portfolio website, and temperature converter. These projects allowed me to apply my skills and knowledge to solve real-world problems, and to learn new technologies and techniques. In addition to hands-on experience, I also benefited from the guidance and support of my mentors at Oasis Infobyte. They were always willing to answer my questions, provide feedback, and help me to learn and grow. I am grateful to Oasis Infobyte for providing me with this incredible opportunity to learn and grow. The skills and knowledge I gained during my internsh...
Read more