search

manfredsteyer / angular-oauth2-oidc

Support for OAuth 2 and OpenId Connect (OIDC) in Angular.
MIT License
1.9k stars 689 forks source link

Support for Service Workers #1314

Open vasicvuk opened 1 year ago

vasicvuk commented 1 year ago

Is your feature request related to a problem? Please describe. There is a recommendation that Single Page Applications should store their access token within the Service Worker to deny accessing the Access Token via XSS. Link

Angular Service Worker already works as a proxy for all HTTP requests. Maybe this library can store the token within the Service worker to be more secure?

turbo-xav commented 3 weeks ago

Hello, Has anyone looked into this feature.

Security is asking about this possibility in future projects. Your bookstore does not offer it at the moment.

Is it on the roadmap?

Best regards