Managing Cookies in Cypress tests

[williamtaggart97]

I'm working through setting up login for my E2E tests, but the login/callback relies on an oauth-state cookie that isn't there when I log in via Cypress.

Here's the login code:

Cypress.Commands.add('login', (email, password) => {
  cy.visit('/')
  cy.get('input#username').type(email)
  cy.get('input#password').type(password)
  cy.contains('button[value=default]', 'Continue').click()
})

And here's the next route that's throwing an error (I've confirmed that the query params for code and state are coming through correctly)

export async function GET(req: NextRequest) {
  const url = new URL(req.url)
  const code = url.searchParams.get('code')
  const state = url.searchParams.get('state')

  const storedState = req.cookies.get('canvas-oauth-state')?.value ?? null

  if (!code || !state || state !== storedState) {
    return NextResponse.json(
      { message: 'Invalid Oauth2 state' },
      { status: 400 }
    )
  }

My question is: How can I make sure that the canvas-oauth-state cookie is successfully passed to the callback route?

I've tried looking through the cookies using Cypress.Cookies.debug(true) and I've tried logging cookies at different steps in the process and it's really weird. When I am going through the log in process, I see that the debug logs remove an old cookie and set a new cookie, so I know it exists somewhere in the process. HOWEVER, whenever I try to add manual logs in my login action to see if I can manipulate that cookie, it's not there...

I've used cy.getCookies, cy.getAllCookies and cy.getCookie('canvas-oauth-state') and they never return the object you see in the screenshot below.

Any input on the discrepancies between the debug logs and cy.getCookie would be appreciated. I've been thinking about maybe a change in domain, but I'm lost...