avatarNikos Oikonomou

Summary

This text provides a guide on how to manage cookies in a NestJS application using the cookie-parser package.

Abstract

The text is a guide on managing cookies in a NestJS application. It explains that NestJS web applications do not handle cookies by default, and therefore, the cookie-parser package needs to be installed and enabled. This package provides an express middleware that can parse Request’s cookies and add them to req.cookies. The guide provides step-by-step instructions on how to install and enable the cookie-parser package, create a basic NestJS module to apply the new middleware, and test the new endpoint by running the application and sending a new HTTP request. It also explains how to implement available settings from the cookies-parser package using a new NestJS config and use it at the cookie’s configure method. The guide also provides information on how to define Cookie Secrets that can be used to decode signed cookies. The guide emphasizes the importance of using the module structure and provides useful links for further reading.

Bullet points

  • NestJS web applications do not handle cookies by default, so the cookie-parser package needs to be installed and enabled.
  • The cookie-parser package provides an express middleware that can parse Request’s cookies and add them to req.cookies.
  • Step-by-step instructions are provided on how to install and enable the cookie-parser package.
  • A basic NestJS module needs to be created to apply the new middleware.
  • The new endpoint can be tested by running the application and sending a new HTTP request.
  • Available settings from the cookies-parser package can be implemented using a new NestJS config and use it at the cookie’s configure method.
  • Cookie Secrets can be defined to decode signed cookies.
  • The guide emphasizes the importance of using the module structure.
  • Useful links are provided for further reading.

NestJS - Cookies

In this section, we’ll introduce cookies management to our NestJS application.

This section is part of a larger guide. You can follow it from the beginning or just complete the only prerequisite step (getting started).

At this point, you should have a fully operational NestJS project to follow the upcoming steps.

NestJS Web Apps don’t handle cookies by default so we’ll need to install and enable the cookie-parser package. It provides an express middleware that can parse Request’s cookies and add them to req.cookies.

Let’s start by installing the cookie-parser package and its types:

npm i cookie-parser
npm i -D @types/cookie-parser

Now we can create a basic NestJS module to apply the new middleware:

We can now install the new module in our application and create a test endpoint that returns the provided cookies:

You can test the new endpoint by running the application and sending a new HTTP request:

npm run start:dev
curl -H 'cookie: awesome=cookie' localhost:3000/cookies
# expected output: {"awesome":"cookie"}

Or by running e2e tests:

npm run test:e2e

Now that we have a fully operational example, we can focus on implementing the available settings from the cookies-parser package. To do so we’ll introduce a new NestJS config and use it at the cookie’s configure method.

The application can also define Cookie Secrets that can be used to decode signed cookies. Just set COOKIES_SECRET environment variable and it will be used by the cookie parser middleware. You can pass single or multiple values separated by commas (e.g. COOKIES_SECRET=secret-a , COOKIES_SECRET=secret-a,secret-b,secret-c ).

Now, your application can decode incoming cookies and add them to the corresponding req object at req.cookies.

Note: To use import cookieParser from 'cookie-parser'; instead of import * as cookieParser from 'cookie-parser';, you must enable esModuleInterop.

Disclaimer: There are various ways to enable cookie parser (e.g. using app.use(cookieParser())), but in this guide, we try to always use the module structure (check the best practices section for more details).

Useful Links:

Nodejs
Backend
Nestjs
Web Development
Cookies
Recommended from ReadMedium
avatarNikos Oikonomou
NestJS - Security - Basics - Helmet.js / CORS

In this section, we introduce key mechanisms - such as Helmet.js and CORS - to enhance the security of your NestJS application.

5 min read
avatarGeneral Zod
Importing Massive CSV datasets in NestJS using TypeORM & Readable Streams

When dealing with large-scale datasets, particularly CSV files, many traditional CSV parsers can pose significant challenges. A common…

9 min read
avatarAnkit
How to Build an API Key Authorization-Based Backend in Node.js and NestJS

Unlock the power of secure API access by building an API Key authorization-based backend with Node.js and NestJS! 🔑

5 min read
avatarHrugved Prashant Chavan
NestJS : Interceptors

NestJS is a powerful framework for building scalable server-side applications with Node.js. If you’re new to NestJS or coding in general…

4 min read
avatarVitaliy Korzhenko
JWT Authentication in NodeJS with NestJS

What is JSON Web Token?

4 min read
avatarPriyanshu Rajput
Scaling a Node.js Server: Centralizing Logs for Efficient Error Handling

Scaling a Node.js server is not just about managing increasing traffic or deploying efficient architecture — it’s also about maintaining…

3 min read