Get JWT token from more than one cookie

[redddcyclone]

Hello all,

Is it possible to use more than one cookie for the auth_jwt_location directive? I have a case where I have to use two different cookies (signed by the same public key) for authentication.

Thanks in advance!

[JoshMcCullough]

Can you elaborate on your case? Is it that the JWT may be in either cookie and you do not know which one? Or is there a certain path (location) which may have the JWT in a different cookie than the others?

[redddcyclone]

Hi

In this case, the JWT may be in either cookie. Most of the application's pages use the same cookie (I'm gonna call it cookie 1), but there is a specific one that uses another cookie (I'm calling it cookie 2 here). Both needs access to a single location (let's call it /files) that contains the application's static content, but when accessing /files, the content is not loaded because cookie 1 is non-existent at this time, only cookie 2 is present. At the location config for /files I can only set a single auth_jwt_location directive. My goal here would be to use two different cookies to access /files.

Thanks!

[JoshMcCullough]

Could you possibly consolidate the cookies in your NGINX config? That is, rename cookie 2 to cookie 1 and then always get the JWT from cookie 1?

[redddcyclone]

Hi @JoshMcCullough , sorry for the extremely late answer.

Do you mean using the same cookie name? If yes, I can't, the application requires that that specific page use a cookie called "cookie 2"...