They seem to be cookies necessary for the webapp to be working but I've been unable to find detailed information about them in the Retool Documentation.
Any idea?
If some of those cookies are not necessary for the website to work, what are they and is it possible to turn them off?
Retool utilizes various cookies to manage session states, enhance security, and improve functionality. While some cookies are essential for the core operation of Retool applications, others serve auxiliary purposes such as feature experimentation or analytics.
Essential Cookies:
accessToken: Manages user authentication and session integrity.
xsrfToken & xsrfTokenSameSite: Protect against Cross-Site Request Forgery (CSRF) attacks, ensuring security during data submissions.
Non-Essential Cookies:
experimentsId: Potentially used for A/B testing or feature flagging.
in_retool_canary_group: Likely related to beta feature access or experimental groups.
ko_id: Could be an identifier for analytics or tracking user interactions.
subdomain: Might be used for managing multi-tenant environments or subdomain-specific settings.
Disabling non-essential cookies may impact certain functionalities, especially those related to user experience enhancements or experimental features. To manage or disable these cookies:
The only cookie that needs to be set for public apps, in particular, is experimentsId. As far as I know, there isn't a way to turn it off, either. All of the other cookies that you've shown here are only set when visiting an authenticated app.
I hope that answers your question! Let me know if there's anything else I can do for you.
