Tarik Kaoukab
Reputation: 61
What's the best (and most secure) way to store token values in client side?
I get a token from an autorization server that should be called only if the token expires. So I have to store that token somewhere on my client side. the problem is, I don't have a database to put it into, and I don't know if using system files is a good idea. I need your help to tell me what is the best way to store this token ?
Upvotes: 0
Views: 146
Answers (1)
Vimal
Reputation: 404
You can save authentication information in the browser using cookies. Many modern websites using cookies to store token. If you use cookies the browser will automatically send the authentication information with every request to the API. This can be convenient so long as you know it's happening.
Upvotes: 1
Related Questions
- What is the best practice to store jwt token in client side?
- Safely storing refresh tokens in Java application
- Should I Save token securely in Memory or sqlite? or Please suggest
- Is local storage the best way to store JWT token on client side? ( Assuming best practices are in place for preventing XSS )
- How to send oauth2 tokens to client and store them?
- How can a RESTful API client save an oAuth token for future requests?
- Saving decoded and validated JWT/access tokens in Java
- Best practice in storing and using a OAuth2 Token in Android?
- What are the best practices on the server side for storing a token for an android application
- Authentication token storage recommendations