Destroy http-only cookie with cookie-parser

Asked Jun 30 '18 at 15:31

Active Jun 30 '18 at 15:31

Viewed 363 times

I am using cookie-parser to create a http-only cookie that holds the token for a logged-in user.

Then I need to either destroy that cookie or make it expire, when the user hits "logout".

How can I destroy (or at least edit) the cookie?

Will the following do the trick ?

res.cookie("SESSIONID", null, {httpOnly:true, secure:true});

Thank you

asked Jun 30 '18 at 15:31

slevin

Are you using passport? – Jim B. Jun 30 '18 at 17:21
@JimBaldwin Nope, nowhere in the project – slevin Jun 30 '18 at 17:29
It should be easy enough to try it and see what happens... – Jim B. Jun 30 '18 at 17:50

0 Answers0