#localstorage

Articles tagged with #localstorage

Where to store JWT in browser?
We need to store the JWT on the client computer. If we store it in a LocalStorage/SessionStorage then it can be easily grabbed by an XSS attack. If we store it in cookies then a hacker can use it (without reading it) in a CSRF attack and impersonate ...
Jan 29, 20223 min read44
Cookies vs Headers vs URL Parameter
URL Parameters First of all, we never recommend placing a token in the URL. URLs are bookmarked, shared with friends, posted online, etc. It is too easy for a user to copy a URL of a page they like and forward to a friend. So this narrows us down t...
Jan 29, 20222 min read194