Note: For learning and communication purposes only. Strictly prohibited for commercial use. Please delete within 24 hours and do not share on social platforms. If this project is useful to you, please give it a star. It really helps me a lot, thank you!
Cookie-share is a Chrome extension that allows users to send and receive cookies between different devices or browsers. It can be used for multi-account switching, sharing video memberships, co-renting planets, and other scenarios. A self-hosted Cloudflare Worker ensures data security.
Many websites do not support multi-account switching and you don't want to log out and log in again?
You have a video membership but your friends always find it cumbersome to scan a code?
You share a certain planet with classmates and want to recover health points?
Just too lazy to take out your phone or enter the password to switch device logins?
- Go to the homepage of a logged-in website (any URL that contains cookies)
- Click the extension icon, customize an ID (only letters and numbers are supported), and send the cookie
- On a device that is not logged in, visit the login page, use the previously set ID to retrieve the cookie, wait for the plugin to display that the cookie has been retrieved and set successfully, then refresh the page
Tested websites:
- A certain planet
- A certain art platform
- A certain L site
- Generates random unique IDs for cookie sharing
- Sends cookies from the current tab to the server
- Receives and sets cookies to the current tab from the server
- Admin functionality for managing stored cookies
- Supports
HTTPOnlycookies that JS cannot access due to higher plugin permissions
- Clone this repository or download the source code.
- Open Chrome and navigate to
chrome://extensions/. - Enable "Developer mode" in the top right corner.
- Click "Load unpacked" and select the directory containing the extension files.
- Enable Developer mode in Chrome/Edge browser (Extensions page)
- Drag and drop the modified
cookie-share.zipdirectly into the browser - Click the Cookie-share icon in the Chrome toolbar.
- Send cookies from a logged-in browser page
- Accept cookies on an unlogged browser page
- Make sure not to add
/at the end of the address, for example:https://your-worker-name.your-subdomain.workers.dev
Deployment can be similar to https://linux.do/t/topic/115004
- Register a Cloudflare account and create a Worker.
- Copy the content of
_worker.jsto the newly created Worker. - In the Cloudflare Worker settings, add the following environment variables:
ADMIN_PASSWORD: Set a strong password for accessing admin endpointsCOOKIE_STORE: Create a KV namespace for storing cookie data
- Bind the KV namespace in the Worker settings:
- Variable name:
COOKIE_STORE - KV namespace: Select the KV namespace you created
- Variable name:
- Save and deploy the Worker.
- Note the Worker URL, which is similar to:
https://your-worker-name.your-subdomain.workers.dev(if blocked, please customize the domain)
- Ensure that
ADMIN_PASSWORDis set to a strong password and change it regularly. - Do not hard-code
ADMIN_PASSWORDin the code, always use environment variables. - Regularly review stored data and delete cookies that are no longer needed.
- Consider setting expiration times for cookie data to reduce the risk of storing sensitive information long-term.
The backend is implemented as a Cloudflare Worker, providing the following endpoints:
Remember to add X-Admin-Password: yourpassword
Example:
/admin/list-cookies
curl --location --request GET 'https://your-worker-name.your-subdomain.workers.dev/admin/list-cookies' \
--header 'X-Admin-Password: yourpassword'/admin/delete
curl --location --request DELETE 'https://your-worker-name.your-subdomain.workers.dev/admin/delete?key={yourid}' \
--header 'X-Admin-Password: yourpassword'POST /send-cookies: Store cookies associated with a unique IDGET /receive-cookies: Retrieve cookies for a given IDGET /admin/list-cookies: List all stored cookie IDs and URLsPOST /admin/create: Create new data entriesGET /admin/read: Read data for a given keyPUT /admin/update: Update data for a given keyDELETE /admin/delete: Delete data for a given keyDELETE /admin/delete-all: Delete all stored dataGET /admin/list: List all stored dataGET /admin: Access the admin management page
The admin management page provides a user-friendly interface for managing cookies and other data stored in the Worker. It includes features such as viewing all stored cookies, creating new cookie entries, updating existing cookies, and deleting individual cookies or all stored data.
To access the admin page, navigate to https://your-worker-name.your-subdomain.workers.dev/admin in your browser. You will be prompted to enter the admin password before accessing the management interface.
Admin endpoints require authentication with the admin password.
manifest.json: Extension configuration filepopup.html: HTML structure of the extension popuppopup.js: JavaScript for handling user interactions and cookie operationsstyle.css: CSS styles for the popup_worker.js: Cloudflare Worker script for backend operations
Modifying the extension:
- Edit relevant files (
popup.html,popup.js,style.css). - Reload the extension in Chrome to view changes.
Modifying the backend:
- Edit the
_worker.jsfile. - Deploy the updated Worker to Cloudflare.
- The extension uses HTTPS for all communications with the backend.
- Admin endpoints are password-protected.
- Implement input validation to prevent injection attacks.
- Cookies are securely stored on the server and cannot be accessed without a unique ID.
- Only admin interfaces are provided, no admin pages (unknown update time)
Welcome contributions! Feel free to submit Pull Requests.
MIT
