we are currently moving from .NET MVC to an Angular SPA. We have our own token based authentication mechanism.
I am setting this token in a HttpOnly cookie in login r
