Diskdrive
Reputation: 18865
Are session variables hidden from the user in MeteorJS?
Just wondering, should we be using Meteor's sessions on the assumption that in production, the user has read and/or write access to them at all times or is it like encrypted similar to ASP.NET View States?
Just want to know if I have to design / test my application for the user modifying them.
Upvotes: 2
Views: 169
Answers (1)
jrullmann
Reputation: 2978
Session variables are not hidden. Anyone can view and change the values.
Upvotes: 3
Related Questions
- Getting session variable's value in meteorjs
- Meteor Mysql and Session without MongoDB
- Sessions in Meteor
- Can Meteor.js Server side code react to Session variables on Client
- Meteor - Session Variable display in template verbose and not html code
- Can Meteor Templates access Session variables directly?
- Meteor JS tutorial - sessions are reactive?
- Is Session in Meteor a misnomer?
- What variable types can / should I use as meteor.js Session variables?
- Session.set vs changing the variable