Node.js

How to Get and Set Cookies in Node.js Using Express

Discover the simplicity of getting and setting cookies in Node.js with Express. Learn to efficiently manage user sessions, set personalized preferences, and enhance security. Master the art of seamless cookie handling for optimal web application experiences.

Suresh Ramani

Published:

5 months ago

Express.js, a popular web framework for Node.js, simplifies the process of building robust and scalable web applications. When it comes to managing user sessions and preferences, handling cookies is a crucial aspect. In this article, we'll explore how to effortlessly get and set cookies in Node.js using Express.

Setting Up Express in Node.js

Before we dive into cookies, make sure you have Express installed. If not, you can install it using npm:

npm install express

Now, let's create a basic Express application:

const express = require('express');
const app = express();
const port = 3000;

app.get('/', (req, res) => {
  res.send('Hello, Express!');
});

app.listen(port, () => {
  console.log(`Server running on http://localhost:${port}`);
});

Setting Cookies with Express in Node.js

Express provides a convenient way to set cookies using the res.cookie() method. Let's modify our Express application to set a simple cookie:

const express = require('express');
const app = express();
const port = 3000;

app.get('/', (req, res) => {
  // Set a cookie named 'user' with the value 'JohnDoe'
  res.cookie('user', 'JohnDoe');
  res.send('Cookie set successfully');
});

app.listen(port, () => {
  console.log(`Server running on http://localhost:${port}`);
});

In this example, the res.cookie() method takes care of creating the Set-Cookie header with the specified name and value.

Getting Cookies with Express in Node.js

Retrieving cookies in Express is straightforward. The cookies are available in the req.cookies object. Let's modify our application to retrieve and display the 'user' cookie:

const express = require('express');
const app = express();
const port = 3000;

app.get('/', (req, res) => {
  // Get the 'user' cookie from the request
  const userCookie = req.cookies.user;
  res.send(`User cookie value: ${userCookie}`);
});

app.listen(port, () => {
  console.log(`Server running on http://localhost:${port}`);
});

Ensure you have the cookie-parser middleware installed for Express to parse cookies. Install it using:

npm install cookie-parser

And then use it in your Express app:

const express = require('express');
const cookieParser = require('cookie-parser');

const app = express();
const port = 3000;

app.use(cookieParser());

// Routes and application logic go here

app.listen(port, () => {
  console.log(`Server running on http://localhost:${port}`);
});

Enhancing Security with Express in Node.js

Express allows you to enhance the security of your cookies easily. For example, to make a cookie secure and HTTP-only, you can do the following:

res.cookie('user', 'JohnDoe', { secure: true, httpOnly: true });

By setting the secure flag, the cookie is only sent over HTTPS connections. The httpOnly flag prevents client-side scripts from accessing the cookie.

Conclusion

Express simplifies the process of getting and setting cookies in Node.js, making it easy to manage user sessions and preferences. By using the built-in res.cookie() method and the cookie-parser middleware, you can handle cookies seamlessly. Remember to consider security measures, such as using HTTPS and HTTP-only cookies, to enhance the protection of user data in your Express applications.

Nodejs Expressjs