I know storing user information in localstorage is unsafe because anyone could access them. However, what if these informations are stored as a crypted jwt (gCS4$dh+ze%vb!fh instead of {name:"joe", age: 45} for example)? Should I use http-cookie no matter what?
Asked
Active
Viewed 23 times
0
Jonathan Hall
- 75,165
- 16
- 143
- 189
DoneDeal0
- 5,273
- 13
- 55
- 114
-
Does this answer your question? [Can local storage ever be considered secure?](https://stackoverflow.com/questions/17280390/can-local-storage-ever-be-considered-secure) – Jonathan Hall Oct 05 '20 at 12:06
-
No. I'm not using node crypto module, but jwt. The client needs a secret jwt key to decypher the user information. – DoneDeal0 Oct 05 '20 at 12:28