this is for holding javascript data
Alec Aivazis edited In_most_cases_in_order__.html
over 8 years ago
Commit id: 2a115d59795ee01bd46e2a9093feeb355232e2da
deletions | additions
diff --git a/In_most_cases_in_order__.html b/In_most_cases_in_order__.html
index 74efd38..18a5a0d 100644
--- a/In_most_cases_in_order__.html
+++ b/In_most_cases_in_order__.html
...
post. Summary: local storage is susceptible to xss and cookies are susceptible to csrf. Since csrf protection is standard in most backend and xss is a bit tricker, I opted to store my JWT in a cookie with the HttpOnly, and Secure flags.