Closed dwicao closed 4 years ago
Hi, first of all, thank you so much for this helpful example.
I had an issue, here's how to replicate:
How to prevent it? I'm sorry I just don't familiar with OAuth's spec, but it is intended? Is it to mitigate the CSRF attack?
I know this is may not be the best approach, But I ended up encrypting the token and save it into local storage.
Hi, first of all, thank you so much for this helpful example.
I had an issue, here's how to replicate:
How to prevent it? I'm sorry I just don't familiar with OAuth's spec, but it is intended? Is it to mitigate the CSRF attack?