The first image is the network developer option which shows that csrf cookie is available in response set-cookie header with no hhtponly flag. request header also contain some csrf cookie. also sessionid is available in response header set-cookie.
The second image shows document.cookie
is an empty string.
Pls help me out.
Extra info: backend built using django and djangorestapi, live running with https. frontend with react live on somedomain.vercel.app
with https.
Thanks in advance.