DEV Community

pmgzo
pmgzo

Posted on • Edited on

Saving session token in web app

#webdev #sessions #token

Hi everyone in this new post I wanted to share you how to save the identification token in your frontend app.

First I suggest to read this papper which state lots of vulnerabilties on web apps: https://owasp.org/www-project-developer-guide/draft/

I couldn't find the PDF but basically if you go to their github by typing "OWASP" you will definitely find it.

Anyway in this paper they state that we should store the session token in the localStorage. Because, if you want to go to another website, this website could have access to this session token which is a strong vulnerability.

So how do you do differently ?

They propose to store the session token in the sessionStorage window's property

That's it for today I hope you enjoyed this sharing

I see you in the next one ๐Ÿ‘Š

web #frontendย #websecurity

Top comments (0)

Read next

jancodes profile image

How to Set Up Next.js 15 for Production in 2024

Jan Hesters -

aniruddhadak profile image

๐Ÿ‘จโ€๐Ÿ’ป My Developer Portfolio: Showcasing My Journey and Projects ๐Ÿ’–

ANIRUDDHA ADAK -

carrie_luo1 profile image

SafeLine WAF Waiting Room: The Terminator of HTTP Flood DDoS Attack

Carrie -

testifytech profile image

Retail Application Testing: What It Is & Why Your App Needs It

Steve Wortham -