8000 Improve auth security · Issue #237 · codex-team/notes.api · GitHub

9949 Improve auth security #237

Open

Assignees

opened

on Mar 25, 2024

We need to store refresh token in http-only cookie to prevent stealing it from LocalStorage by any script (for, example Editor tool from marketplace)

See https://gist.github.com/zmts/802dc9c3510d79fd40f9dc38a12bccfc

Metadata

Assignees

kloV148

Labels

No labels

No labels

Type

No type

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

0