Load Balancing Cookies for Authentication in ASP.NET Core 3.1

Asked Mar 26 '20 at 19:12

Active Mar 26 '20 at 20:58

Viewed 1,741 times

I am trying to setup refresh tokens for an ASP.NET Core 3.1 Razor app. I found an example here. It uses cookies to pass the access token and refresh token to another part of the application.

My concern is that the cookies will not work when it is hosted in a load balanced way. (I read this page, but it does not really clarify this for me.)

How do cookies travel in an ASP.NET Core 3.1 Razor app? Do they get sent to the client which then sends them up with each request? If so, each node in the load balancing pool would get the cookie and be able to use the information in it, right?

edited Mar 26 '20 at 20:58

asked Mar 26 '20 at 19:12

Vaccano

78,325
149
468
850

You can check this thread: https://stackoverflow.com/a/53501066/6751634 – Fei Han Mar 27 '20 at 06:51
do you get any solution for this. – sina_Islam Jan 08 '23 at 16:08
@sina_Islam - Not for razor specifically, but for ASP.Net Core in general, the cookie seems to be sent with each request. – Vaccano Jan 09 '23 at 20:41

Load Balancing Cookies for Authentication in ASP.NET Core 3.1

0 Answers0