New answers tagged security
4
votes
Where should I store the access token in React?
What happens when the user refreshes the page? is the refresh token sent? Are you sending the refresh token with every request?
The key idea with a refresh token is that its securely stored on the ...
- 84.6k
1
vote
How dangerous is storing sensitive information in LocalStorage?
Just an example of why it isn't a good idea
Really well explained at the beginning, just want to add an example to keep in your pocket.
Indeed, LocalStorage is not a good place in order to store ...
- 104
5
votes
How dangerous is storing sensitive information in LocalStorage?
The attack would take the form of javascript loaded from another domain, but executed in the target domains page.
ie I load a script from compromised.advertiser.com/adverts.js and it runs "read ...
- 84.6k
1
vote
What are best practices for enterprise software, should a developer be able to login as one of its users? (when its your own company)
One user should never be able to be another user in production. The system should always know who the user is and accurately record who made any changes.
But that’s not the end of the story. Because ...
- 11.2k
Top 50 recent answers are included