Skip to content

Handling of Access Token through Http cookie #28

New issue
New issue
Open
Bug
Open
Handling of Access Token through Http cookie#28
Bug
Assignees
archa8
Labels
backendfrontendonlydust-waveContribute to awesome OSS repos during OnlyDust's open source week
@Avdhesh-Varshney

Description

@Avdhesh-Varshney
Avdhesh-Varshney
opened on Aug 17, 2025

Refrence: #27 (comment)

Storing the access token in sessionStorage may expose it to XSS attacks. Consider using httpOnly cookies or a more secure storage mechanism for sensitive authentication tokens.

Here Need some files like,

  1. Handling of cookie through BE middleware which should able to read the cookie and decode.
  2. Update the registerUser api in BE to send the access_token in cookie.
  3. Also need to handle the cookie in FE in app.tsx file.

Metadata

Metadata

Assignees

Labels

backendfrontendonlydust-waveContribute to awesome OSS repos during OnlyDust's open source week

Type

Bug

Projects

No projects

Milestone

No milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions