it looks like your signing in with a jwt token. these are not written to a cookie, but should be sent as a bearer token on each request. browsers only support bearer tokens via javascript requests that pass the token.
note: the identity cookie value is encrypted, and can not be decoded in the browser tools. also identity does not use session