Express req.cookies Property
What you’ll learn
- How
req.cookiesgets populated in Express. - How to read cookie values in route handlers.
- How regular and signed cookies differ.
- How to handle missing or invalid cookie values safely.
Usage syntax
javascript
req.cookies
req.signedCookies1
Read cookies with cookie-parser
javascript
var cookieParser = require('cookie-parser');
app.use(cookieParser());
app.get('/profile', function (req, res) {
var theme = req.cookies.theme || 'light';
res.send('Theme: ' + theme);
});❓ FAQ
It is an object containing cookies sent by the client, parsed into key-value pairs.
Yes. In most setups you use cookie-parser middleware before routes to populate req.cookies.
req.cookies has regular cookies, while req.signedCookies contains cookies signed with your secret.
Yes, if no cookies are sent by the client or parsing middleware is not configured.
No. Treat cookie data as client input and validate it before sensitive use.
Did you know?
req.cookies is populated by cookie-parser, and contains key-value pairs of plain (unsigned) cookies.
4 people found this page helpful
