I am working on cookie issue that I figured out there is only one Request URI, for example, api.foo.example.com/authorization when I checked Headers in Chrome Network tab. It also has one cookie, session=longerlongerlonger. However when I check cookie in Chrome Application tab, there are two cookies with same name.
value domain
session: longerlongerlonger api.example.com
session=short example.com
Which cookie is it going to pick and use to authenticate? Following to this, the longer path has higher order, but their paths are same.
