Variable | ENABLE_BEARER_TOKEN_AUTHORIZATION | |
Introduced Version | 1.42.0 | |
Description | Using less secure bearer token instead of secure cookies | |
Default | false |
If you have a need of serving the backend API and frontend from two different domains with no subdomain relation, you cannot use secure cookies. Instead you need to use a less secure bearer token. This is done by enabling bearer token authorization via the configuration option:
ini
ENABLE_BEARER_TOKEN_AUTHORIZATION=true
See also Configure Session Cookies.