Parse cookie strings and create new ones. All attributes supported. Runs in your browser.
The Cookie Parser is an essential tool for web developers working with HTTP cookies and browser storage. It parses cookie strings to extract all attributes (name, value, domain, path, expiration, security flags) and allows you to create properly formatted cookie strings for Set-Cookie headers. Perfect for debugging, testing, and understanding cookie behavior.
Explore these related free tools to enhance your productivity and workflow.
Paste a cookie string (from browser dev tools or Set-Cookie header) into the input field. The tool automatically parses it and displays all cookie attributes including name, value, domain, path, expires, secure, httpOnly, and sameSite.
Use the 'Create Cookie' section to build a cookie string. Enter the cookie name and value, then optionally set domain, path, expiration, and security flags. The tool generates the complete cookie string you can use in Set-Cookie headers.
The tool supports all standard cookie attributes: Domain, Path, Expires, Max-Age, Secure, HttpOnly, and SameSite. You can parse existing cookies or create new ones with any combination of these attributes.
Yes! Click 'Load Current Cookies' to load all cookies from the current page. This shows you all cookies set for the current domain, which is useful for debugging and development.
Yes! Our cookie parser is 100% free with no registration required, no usage limits, and no hidden fees. You can parse and create as many cookies as you need for your development work.
No, all cookie parsing happens locally in your browser. We don't store, save, or have access to any cookies you parse or create. Your privacy is completely protected.
You can set Domain (which domains can access the cookie), Path (which paths can access it), Expires (expiration date), Max-Age (lifetime in seconds), Secure (HTTPS only), HttpOnly (JavaScript access prevention), and SameSite (CSRF protection).
Expires sets an absolute expiration date/time, while Max-Age sets a relative expiration time in seconds from when the cookie is set. Max-Age is preferred in modern applications as it's more reliable.
SameSite controls when cookies are sent with cross-site requests. 'Strict' never sends cookies cross-site, 'Lax' sends cookies for top-level navigation, and 'None' always sends cookies (requires Secure flag).
Yes! Paste a cookie string containing multiple cookies separated by semicolons, and the tool will parse each cookie separately, displaying all attributes for each one.
Copy the generated cookie string and use it in Set-Cookie HTTP headers when setting cookies from a server, or use document.cookie in JavaScript (though HttpOnly cookies can't be set via JavaScript).