Reputation: 1606
Twitter Access Token Storage
This question has been asked many times but I don't find any clear answer about it.
I'm building an App with twitter access.
Of course, I get the two tokens but as I don't want to ask the user every time to authorize the App I need to store them.
But where ? Cookie, Session, DB ??
Can somebody help me and tell me the pros and cons with those methods.
Upvotes: 0
Views: 220
Answers (1)
Reputation: 4019
How long do you want to keep the access for? If it is just a single interaction, then keeping it in a session should be fine. If you want to use the cookies over a longer period of time with multiple interactions, then storing it in a DB is probably much better.
I would advise against storing them in cookies. If the user logs in from another browser or another machine, they would be prompted to authorize again. And then the tokens stored in cookies in the original browser wouldn't work. So it would be a confusing experience for the user.
Upvotes: 2
Related Questions
- Dealing with Twitter API to authenticate an access token in .NET Core 2.2
- twitter application oauth 403
- OAuthWebSecurity "Remember me" for Twitter
- Twitter API Safe Authentication
- Twitter using C# and .net 2.0
- Storing Twitter access token using Twitterizer
- How to Obtain AccessToken and AccessTokenSecret for Twitter?
- Twitter App using C# using OAuth token
- Simplest Twitter authentication
- Storing login/password in twitter client