VariableENABLE_BEARER_TOKEN_AUTHORIZATION
Introduced Version1.42.0
Description Using less secure bearer token instead of secure cookies
Defaultfalse

If you have a need of serving the backend API and frontend from two different domains with no subdomain relation, you cannot use secure cookies. Instead you need to use a less secure bearer token. This is done by enabling bearer token authorization via the configuration option:

ini
ENABLE_BEARER_TOKEN_AUTHORIZATION=true

See also Configure Session Cookies.