cowboy/doc/src/manual/cowboy_req.set_resp_cookie.asciidoc

= cowboy_req:set_resp_cookie(3)

== Name

cowboy_req:set_resp_cookie - Set a cookie

== Description

[source,erlang]
----
set_resp_cookie(Name, Value, Req :: cowboy_req:req())
    -> set_resp_cookie(Name, Value, [], Req)

set_resp_cookie(Name, Value, Req :: cowboy_req:req(), Opts)
    -> Req

Name  :: binary()                  %% case sensitive
Value :: iodata()                  %% case sensitive
Opts  :: cow_cookie:cookie_opts()
----

Set a cookie to be sent with the response.

Note that cookie names are case sensitive.

== Arguments

Name::

Cookie name.

Value::

Cookie value.

Req::

The Req object.

Opts::

Cookie options.

== Return value

A new Req object is returned.

The returned Req object must be used from that point onward,
otherwise the cookie will not be sent in the response.

== Changelog

* *2.0*: `set_resp_cookie/3` introduced as an alias to `set_resp_cookie/4` with no options.
* *2.0*: The first argument type is now `binary()` instead of `iodata()`.
* *1.0*: Function introduced.

== Examples

.Set a session cookie
[source,erlang]
----
SessionID = base64:encode(crypto:strong_rand_bytes(32)),
Req = cowboy_req:set_resp_cookie(<<"sessionid">>, SessionID, Req0).
----

.Set a cookie with an expiration time
[source,erlang]
----
Req = cowboy_req:set_resp_cookie(<<"lang">>, <<"fr-FR">>,
    Req0, #{max_age => 3600}).
----

.Delete a cookie
[source,erlang]
----
Req = cowboy_req:set_resp_cookie(<<"sessionid">>, <<>>,
    Req0, #{max_age => 0}).
----

.Set a cookie for a specific domain and path
[source,erlang]
----
Req = cowboy_req:set_resp_cookie(<<"inaccount">>, <<"1">>,
    Req0, #{domain => "my.example.org", path => "/account"}).
----

.Restrict a cookie to HTTPS
[source,erlang]
----
SessionID = base64:encode(crypto:strong_rand_bytes(32)),
Req = cowboy_req:set_resp_cookie(<<"sessionid">>, SessionID,
    Req0, #{secure => true}).
----

.Restrict a cookie to HTTP
[source,erlang]
----
SessionID = base64:encode(crypto:strong_rand_bytes(32)),
Req = cowboy_req:set_resp_cookie(<<"sessionid">>, SessionID,
    Req0, #{http_only => true}).
----

== See also

link:man:cowboy_req(3)[cowboy_req(3)],
link:man:cowboy_req:set_resp_header(3)[cowboy_req:set_resp_header(3)],
link:man:cowboy_req:set_resp_headers(3)[cowboy_req:set_resp_headers(3)],
link:man:cowboy_req:reply(3)[cowboy_req:reply(3)],
link:man:cowboy_req:stream_reply(3)[cowboy_req:stream_reply(3)]
Add man pages for the reply functions 2016-12-21 15:47:44 +01:00			`= cowboy_req:set_resp_cookie(3)`

			`== Name`

			`cowboy_req:set_resp_cookie - Set a cookie`

			`== Description`

			`[source,erlang]`
			`----`
			`set_resp_cookie(Name, Value, Req :: cowboy_req:req())`
			`-> set_resp_cookie(Name, Value, [], Req)`

Change the order of set_resp_cookie arguments The Opts value is put last, to be more consistent with the rest of the cowboy_req module. Additionally a test handler was fixed which reduced the number of errors in http_SUITE. 2017-02-19 09:46:11 +01:00			`set_resp_cookie(Name, Value, Req :: cowboy_req:req(), Opts)`
Add man pages for the reply functions 2016-12-21 15:47:44 +01:00			`-> Req`

Change the type of cookie name to binary() The API will be more consistent like this, and we can ensure that duplicate cookie names are never sent. 2017-02-19 00:26:59 +01:00			`Name :: binary() %% case sensitive`
Add man pages for the reply functions 2016-12-21 15:47:44 +01:00			`Value :: iodata() %% case sensitive`
			`Opts :: cow_cookie:cookie_opts()`
			`----`

			`Set a cookie to be sent with the response.`

			`Note that cookie names are case sensitive.`

			`== Arguments`

			`Name::`

			`Cookie name.`

			`Value::`

			`Cookie value.`

			`Req::`

			`The Req object.`

Change the order of set_resp_cookie arguments The Opts value is put last, to be more consistent with the rest of the cowboy_req module. Additionally a test handler was fixed which reduced the number of errors in http_SUITE. 2017-02-19 09:46:11 +01:00			`Opts::`

			`Cookie options.`

Add man pages for the reply functions 2016-12-21 15:47:44 +01:00			`== Return value`

			`A new Req object is returned.`

			`The returned Req object must be used from that point onward,`
			`otherwise the cookie will not be sent in the response.`

			`== Changelog`

			* 2.0: `set_resp_cookie/3` introduced as an alias to `set_resp_cookie/4` with no options.
Change the type of cookie name to binary() The API will be more consistent like this, and we can ensure that duplicate cookie names are never sent. 2017-02-19 00:26:59 +01:00			* 2.0: The first argument type is now `binary()` instead of `iodata()`.
Add man pages for the reply functions 2016-12-21 15:47:44 +01:00			`* 1.0: Function introduced.`

			`== Examples`

			`.Set a session cookie`
			`[source,erlang]`
			`----`
			`SessionID = base64:encode(crypto:strong_rand_bytes(32)),`
			`Req = cowboy_req:set_resp_cookie(<<"sessionid">>, SessionID, Req0).`
			`----`

			`.Set a cookie with an expiration time`
			`[source,erlang]`
			`----`
Change the order of set_resp_cookie arguments The Opts value is put last, to be more consistent with the rest of the cowboy_req module. Additionally a test handler was fixed which reduced the number of errors in http_SUITE. 2017-02-19 09:46:11 +01:00			`Req = cowboy_req:set_resp_cookie(<<"lang">>, <<"fr-FR">>,`
			`Req0, #{max_age => 3600}).`
Add man pages for the reply functions 2016-12-21 15:47:44 +01:00			`----`

			`.Delete a cookie`
			`[source,erlang]`
			`----`
Change the order of set_resp_cookie arguments The Opts value is put last, to be more consistent with the rest of the cowboy_req module. Additionally a test handler was fixed which reduced the number of errors in http_SUITE. 2017-02-19 09:46:11 +01:00			`Req = cowboy_req:set_resp_cookie(<<"sessionid">>, <<>>,`
			`Req0, #{max_age => 0}).`
Add man pages for the reply functions 2016-12-21 15:47:44 +01:00			`----`

			`.Set a cookie for a specific domain and path`
			`[source,erlang]`
			`----`
Change the order of set_resp_cookie arguments The Opts value is put last, to be more consistent with the rest of the cowboy_req module. Additionally a test handler was fixed which reduced the number of errors in http_SUITE. 2017-02-19 09:46:11 +01:00			`Req = cowboy_req:set_resp_cookie(<<"inaccount">>, <<"1">>,`
			`Req0, #{domain => "my.example.org", path => "/account"}).`
Add man pages for the reply functions 2016-12-21 15:47:44 +01:00			`----`

			`.Restrict a cookie to HTTPS`
			`[source,erlang]`
			`----`
			`SessionID = base64:encode(crypto:strong_rand_bytes(32)),`
Change the order of set_resp_cookie arguments The Opts value is put last, to be more consistent with the rest of the cowboy_req module. Additionally a test handler was fixed which reduced the number of errors in http_SUITE. 2017-02-19 09:46:11 +01:00			`Req = cowboy_req:set_resp_cookie(<<"sessionid">>, SessionID,`
			`Req0, #{secure => true}).`
Add man pages for the reply functions 2016-12-21 15:47:44 +01:00			`----`

			`.Restrict a cookie to HTTP`
			`[source,erlang]`
			`----`
			`SessionID = base64:encode(crypto:strong_rand_bytes(32)),`
Change the order of set_resp_cookie arguments The Opts value is put last, to be more consistent with the rest of the cowboy_req module. Additionally a test handler was fixed which reduced the number of errors in http_SUITE. 2017-02-19 09:46:11 +01:00			`Req = cowboy_req:set_resp_cookie(<<"sessionid">>, SessionID,`
			`Req0, #{http_only => true}).`
Add man pages for the reply functions 2016-12-21 15:47:44 +01:00			`----`

			`== See also`

			`link:man:cowboy_req(3)[cowboy_req(3)],`
			`link:man:cowboy_req:set_resp_header(3)[cowboy_req:set_resp_header(3)],`
Improve the manual for the new resp_header functions 2017-01-04 19:21:23 +01:00			`link:man:cowboy_req:set_resp_headers(3)[cowboy_req:set_resp_headers(3)],`
Add man pages for the reply functions 2016-12-21 15:47:44 +01:00			`link:man:cowboy_req:reply(3)[cowboy_req:reply(3)],`
			`link:man:cowboy_req:stream_reply(3)[cowboy_req:stream_reply(3)]`