cookies
Isomorphic cookie API that works transparently on both server and client. On the server, it reads from the incoming Request Cookie header and writes Set-Cookie headers on the Response via AsyncLocalStorage. On the client, it reads from and writes to document.cookie.
Import
import { cookies } from "catmint/cookies";Methods
cookies.get(name)
cookies.get(name: string): string | undefinedRead a cookie value by name.
| Parameter | Type | Required | Description |
|---|---|---|---|
name | string | Yes | Cookie name to read |
Returns: string | undefined — The cookie value, or undefined if not found.
cookies.getWithOptions(name)
cookies.getWithOptions(name: string): CookieWithOptions | undefinedRead a cookie with full metadata. On the server, returns the cookie value and any options set during this request. On the client, only the value is available.
| Parameter | Type | Required | Description |
|---|---|---|---|
name | string | Yes | Cookie name to read |
Returns: CookieWithOptions | undefined
cookies.set(name, value, options?)
cookies.set(name: string, value: string, options?: CookieOptions): voidSet a cookie. On the server, queues a Set-Cookie header with secure defaults (httpOnly: true, secure: true in production, sameSite: 'lax', path: '/'). On the client, sets via document.cookie (cannot set httpOnly cookies).
All deployment adapters automatically flush queued Set-Cookie headers onto the outgoing response, so cookie mutations in server functions, middleware, and API endpoints are reliably delivered to the browser.
| Parameter | Type | Required | Description |
|---|---|---|---|
name | string | Yes | Cookie name |
value | string | Yes | Cookie value |
options | CookieOptions | No | Cookie configuration options |
cookies.delete(name)
cookies.delete(name: string): voidDelete a cookie by name. On the server, this queues a Set-Cookie header that expires the cookie. The pending header is automatically flushed by all adapters, so deletions work reliably across Cloudflare, Node.js, and Vercel deployments.
| Parameter | Type | Required | Description |
|---|---|---|---|
name | string | Yes | Cookie name to delete |
cookies.has(name)
cookies.has(name: string): booleanCheck if a cookie exists.
| Parameter | Type | Required | Description |
|---|---|---|---|
name | string | Yes | Cookie name to check |
Returns: boolean
cookies.getAll()
cookies.getAll(): Record<string, string>Get all cookies as a name-value record. On the server, reflects both incoming cookies and any mutations made during this request.
Returns: Record<string, string>
Types
CookieOptions
interface CookieOptions {
path?: string;
domain?: string;
maxAge?: number;
expires?: Date;
httpOnly?: boolean;
secure?: boolean;
sameSite?: "strict" | "lax" | "none";
}CookieWithOptions
interface CookieWithOptions {
value: string;
path?: string;
domain?: string;
maxAge?: number;
expires?: Date;
httpOnly?: boolean;
secure?: boolean;
sameSite?: "strict" | "lax" | "none";
}Examples
import { cookies } from "catmint/cookies";
// Read a cookie
const token = cookies.get("session_token");
// Set a cookie with options
cookies.set("theme", "dark", { maxAge: 60 * 60 * 24 * 365 });
// Delete a cookie
cookies.delete("session_token");
// Check existence
if (cookies.has("session_token")) {
// ...
}
// Get all cookies
const all = cookies.getAll();