How to send cookies with Fetch API in Next.js 13.4 middleware for authorization? – Cookies

by
Alexei Petrov
authorization cookies fetch-api next.js13

Quick Fix: Utilize ‘Authorization’ header instead of credentials: \"include\" in the fetch() request to pass cookies for authorization in Next.js 13.4 middleware.

The Problem:

In Next.js 13.4, the Fetch API is used for authorization since Axios cannot be utilized in the middleware. However, cookies are not being sent to the server by Fetch, despite the credentials: include option being set. The Nest.js backend has CORS configured with all the necessary headers, including Access-Control-Allow-Credentials. How can cookies be effectively sent with Fetch to enable authorization in Next.js middleware?

The Solutions:

Solution 1: Reassign the Authorization Token to Fetch Header

The Next.js middleware operates solely on the server, which lacks the cookie mechanism present in browsers. Consequently, the credentials: "include" option fails to function as intended. Instead, you need to assign the authorization token explicitly to the header of the fetch request. Here’s how you can achieve this:

export async function middleware(request: NextRequest) {
    const token = request.cookies.get("access_token")?.value || "";

    const res = await fetch("http://localhost:8080/auth/me", {
        headers: {
            Authorization: token
        }
    })

    ...
}

For further information, refer to the Mozilla documentation on the fetch() function: https://developer.mozilla.org/en-US/docs/Web/API/fetch

Q&A

How to send authorization token to backend server in Next.js middleware?

Pass the token in the header of the fetch request.

Why credentials: "include" not working in Nextjs middleware?

Middleware runs on the server, where there are no browser concepts like cookies.

Video Explanation:

The following video, titled "Client and Server Side Cookies in Next.js - YouTube", provides additional insights and in-depth exploration related to the topics discussed in this post.

Play video

Let's learn how to set/remove cookies both in the browser but also on the server in Next.js. This will allow us to ...

Similar Posts

[Fixed] TypeError: Cannot read properties of undefined (reading 'headers') with next.js new app router – Next.js

Why is my build path suddenly incomplete for my java project in VS Code? – Java

[Fixed] unknown error: result.webdriverValue.value list is missing or empty in Runtime.callFunctionOn response – Java

[Fixed] LangChain, chromaDB Chroma.fromDocuments returns TypeError: Cannot read properties of undefined (reading 'data') – Langchain

Infinite scroll with NextJS13 server components (app directory) – Reactjs

Nx no longer supports the v2 format of angular.json – Angular

Production build fail after Angular upgrade document.documentElement.setAttribute is not a function – Angular

[Solved] How do I pass data from server component to client component in Next.js 14 app router? – Next.js

babel-preset-react-app, is importing the "@babel/plugin-proposal-private-property-in-object" package without declaring it in its dependencie – Javascript

Migration from Java 8 to Java 17 And Spring 6 JUnit4 failing due to version mismatch – Java

© 2024 ProgramingQA. All Rights Reserved.

About Contact Terms Privacy Policy