Browser - Storage (Client Side Data)

Browser - Storage (Client Side Data)

About

Articles Related

Data Store

Format

Authentication - Jwt (Json web token)

Security

Secure or sensitive data should not be stored persistently in browser data stores as they should be treated as insecure storage.

Because the Web Storage mechanisms are APIs, they can be accessed from injected scripts, making it less secure than cookies with the httponly flag applied.

Documentation / Reference

https://cheatsheetseries.owasp.org/cheatsheets/Session_Management_Cheat_Sheet.html#html5-web-storage-api

Recommended Pages

Browser - Cookie

HTTP cookies management in the client side (browser) via javascript. Cookie are one way to store data in the browser. document.cookie is a property of the browser document that returns the HTTP cookie "...

Browser - IndexedDb

indexedDb is a SQL database implementation in the browser. It's one of the way to store data locally (client data) Articles Related Library Documentation / Re "...

Browser - Web API - Local Storage

API Window/localStorage of the web api is a browser/client side data storage mechanism. The localStorage property allows you to access a local Storage object and therefore it implements all the funct "...

Client-side sessions (stateless sessions) - Client Side Data

Client-side sessions (stateless sessions) are session data stored client-side (Generally browser data) Client-side data is subject to tampering. As such it must be handled with great care by the backe "...

React - State

State in React. propsrendering Is it passed in from a parent component? Does it remain unchanged over time? Can you compute it based on any other state or props in your component? In React apps, "...

Web Security - Cross-site scripting (XSS)

cross-site scripting (XSS) is a injection security vulnerability that happens when external javascript code is injected in the page via user input. Injected JavaScript can then steal authentication to "...

Share this page: