if I store access token (JWT) in my local storage of angular project what is wrong in it?

Question

if I store token in my local storage of angular project what is wrong in it. Apart from this, what is the other way to store token in my project because I am using client-side framework so everything is open to see if I use local/session storage, indexedDB, cookies

score 0 · Answer 1 · answered Apr 19 '20 at 16:26

0

Cross Site Request Forgery(CSRF) is a pertinent problem when you store the token in localStorage. Do not store JWT in the local storage. Refer to this link for more details Where to store JWT in browser? How to protect against CSRF?

answered Apr 19 '20 at 16:26

400_bad_request

121
4

if I store access token (JWT) in my local storage of angular project what is wrong in it?

1 Answers1