Thanks for reply. In case client is just a browser then it will send all the cookies with NGIX domain which means that NGIX will send all the cookies to backend server irrespective of who initially set it in set-cookie header.. This could be a security issue then.by nitin - Nginx Mailing List - English
I want to rewrite domains in the cookie when NGIX is acting as reverse proxy. I see that NGIX support this using proxy_cookie_domain module. But I am unable to find out where does it keep the original domain which is being replaced? In my opinion NGIX would need the original domain to find out where to send the cookie when it comes back to NIGX in next request. Let's says NGIX domain is: exby nitin - Nginx Mailing List - English