Authentication Cookies HTTP, HTTP Only, JWT, ReactJs Context API and Node on Backend Industry Structure
dev.to/guillerbr/authentication-cookies-http-http-only-jwt-reactjs-context-api-and-node-on-backend-industry-structure-3f8e
1 Users
0 Comments
6 Highlights
0 Notes
Tags
Top Highlights
In contrast to sessionStorage, when creating data in localStorage this data will be available for any tab/window even if the user closes the window, restarts the system, etc.
With a secure token built in, it is mathematically impossible to decode the signature without having the application's key secret.
HttpOnly cookies are inaccessible to the Document.cookie JavaScript API
If the HttpOnly flag is included in the HTTP response header, the cookie cannot be accessed via client-side script.
the only difference is that while the data stored in localStorage does not expire, the data in sessionstorage has its data cleared when the page session expires.
For example, assuming you want to save the username and password to log in, you might choose to store this data in sessionStorage for security reasons and save the user settings in localStorage.
Ready to highlight and find good content?
Glasp is a social web highlighter that people can highlight and organize quotes and thoughts from the web, and access other like-minded people’s learning.