cookie not deleting in load function?

[manstie]

I have recently migrated from 1.0.0-next.449 to 1.0.0-next.484.

I have a /logout endpoint with a +page.server.js and a +page.svelte. In the server I changed it from:

/** @type {import('./$types').PageServerLoad} */
export function load({ locals, setHeaders }) {
	...
	setHeaders({
		'set-cookie': 'jwt=deleted; path=/; expires=Thu, 01 Jan 1970 00:00:00 GMT',
	});
	return {};
}

to

/** @type {import('./$types').PageServerLoad} */
export function load({ locals, cookies }) {
	...
	cookies.delete('jwt');
	return {};
}

Much nicer, but now it doesn't actually set / delete the cookie when the svelte navigation goes to that page. I had to add rel="external" to my logout navigation button to force sveltekit to hard refresh and run the load function or something? What's up with that.

[eltigerchino]

You'll have to add the path option in cookies.delete, so:

cookies.delete('jwt', { path: '/' });

See this issue and this PR for some insight into why cookies.delete does not use / as a default, and why it's needed to delete certain cookies.

[manstie]

That works, thanks.

[DoisKoh]

You'll have to add the path option in cookies.delete, so:

cookies.delete('jwt', { path: '/' });

See this issue and this PR for some insight into why cookies.delete does not use / as a default, and why it's needed to delete certain cookies.

Man... I wasted so much time on this. Thanks so much.

[yousufiqbal]

It's working for me with plain cookies.delete('cookie-name') without setting path option.

[DoisKoh]

For me, adding the path made it work on my local server, but not on my development servers. I'm not sure what added security caused this to be an issue, but after specifying most of the options (sameSite, httpOnly, and secure), it worked.