Secure Access Token Storage with Single-Page Applications: Part 1

Just Take the Keys (Photo by Erik Mclean on Unsplash)

We developers often have access tokens and other sensitive information flowing through our applications. Access tokens are needed so that we can consume APIs on behalf of our users, and the tokens have to be stored somewhere. With single-page applications, it’s tempting to store access tokens directly in the browser. Doing so is convenient because it makes it easy to intercept…