Browser - Storage (Client Side Data)


This page is about client side data (ie stateless session) in the browser.

Data Store

Browser Native


In-browser databases that wrap browser storage capabilities:



Secure or sensitive data should not be stored persistently in browser data stores as they should be treated as insecure storage.

  • Valid Data: name, email, phone number
  • Not valid Data: credentials, credit card numbers.

Because the Web Storage mechanisms are APIs, they can be accessed from injected scripts, making it less secure than cookies with the httponly flag applied.

Documentation / Reference

Discover More
Browser - IndexedDb

indexedDb is a SQL database implementation in the browser. It's one of the way to store data locally (client data) IndexedDB...
Browser Local Storage Devtool
Browser - Web API - Local Storage

localStorage is a browser/client side data storage mechanism. It's one of the two web storage (key/pair) api and is part of the web api The localStorage property allows you to access a local StorageStorage...
Client-side sessions (stateless sessions) - Client Side Data

Client-side sessions (stateless sessions) are session data stored client-side (Generally browser data) Client-side data is subject to tampering. As such it must be handled with great care by the backend...
Cookie Devtool
How to manage Cookies in the Browser via Javascript?

This article is HTTP cookies management in the client side (browser) via javascript. Cookie are one way to store data in the browser. document.cookie is a property of the browser document that returns...
How to manipulate a Binary large object (BLOB) with Javascript?

The blob object is a data container for blob content This is the API to work with binary data in the browser and is widely supported Because any type of data is...
React - How to persist the local state between rendering without any library? (custom useState Hook)

This article shows you how to persist your local state (ie React state) between re-render without the use of any state library We will use the classic React counter. If you refresh the page or unmount...
React - State

This page is UI State in React. The Local state to a component in react is known as: state. A change of state triggers a render ref. A change of ref value does not triggers a render The global...
Web Security - Cross-site scripting (XSS)

cross-site scripting (XSS) is a injection security vulnerability that happens when external javascript code is injected in the page via user input. Injected JavaScript can then steal authentication tokens...

Share this page:
Follow us:
Task Runner