The cookie name.
The cookie path.
The cookie domain.
Whether this cookie is secured, sent only for HTTPS requests.
Whether this cookie is HTTP only, i.e. not accessible from client-side JavaScript code.
State expiration. Defaults to 5 minutes which provides sufficient time to log in, but not too much. This is a balance between convenience and security.
The cookie domain.
The cookie name.
The cookie path.
State expiration.
State expiration. Defaults to 5 minutes which provides sufficient time to log in, but not too much. This is a balance between convenience and security.
Whether this cookie is HTTP only, i.e.
Whether this cookie is HTTP only, i.e. not accessible from client-side JavaScript code.
Whether this cookie is secured, sent only for HTTPS requests.
The settings for the Csrf State.
The cookie name.
The cookie path.
The cookie domain.
Whether this cookie is secured, sent only for HTTPS requests.
Whether this cookie is HTTP only, i.e. not accessible from client-side JavaScript code.
State expiration. Defaults to 5 minutes which provides sufficient time to log in, but not too much. This is a balance between convenience and security.