Skip to content

Manage Cookies with Express

New Courses Coming Soon

Join the waiting lists

How to use the `Response.cookie()` method to manipulate your cookies

Use the Response.cookie() method to manipulate your cookies.


res.cookie('username', 'Flavio')

This method accepts a third parameter, which contains various options:

res.cookie('username', 'Flavio', { domain: '', path: '/administrator', secure: true })

res.cookie('username', 'Flavio', { expires: new Date( + 900000), httpOnly: true })

The most useful parameters you can set are:

domainThe cookie domain name
expiresSet the cookie expiration date. If missing, or 0, the cookie is a session cookie
httpOnlySet the cookie to be accessible only by the web server. See HttpOnly
maxAgeSet the expiry time relative to the current time, expressed in milliseconds
pathThe cookie path. Defaults to ’/‘
secureMarks the cookie HTTPS only
signedSet the cookie to be signed
sameSiteValue of SameSite

A cookie can be cleared with:

→ Get my Express.js Handbook
→ Read my Express.js Tutorial on The Valley of Code

Here is how can I help you: