I am using Django with rest_framework. I have a view which takes request.COOKIES['csrftoken']. It works fine when I access it from normal mode in browser. But sometimes it doesn’t work in incognito tab. Browser doesn’t send csrf token with request. It is unavailable in request but it is present in response (from server). Sometimes everything work fine and sometimes browser do not send csrf with request. The project is running and using https.