If he has indeed full access, there is nothing that can be done except vigilant server-side security. However, that's hard as the client is completely compromised, and the attacker has all the 'keys'. Real security is very hard to reach on client-server systems. Even on non-web applications this is a real concern. However, acceptable security is achievable. the use of 2nth factor security helps a lot.
Regards Sander -- You received this message because you are subscribed to the Google Groups "AngularJS" group. To unsubscribe from this group and stop receiving emails from it, send an email to angular+unsubscr...@googlegroups.com. To post to this group, send email to angular@googlegroups.com. Visit this group at http://groups.google.com/group/angular. For more options, visit https://groups.google.com/groups/opt_out.