Hi, I made Angular application and I'm using token authentication. At the moment, I'm storing this token in browser's session storage (using LocalStorageModule) and I'm sending it in every request. My concern is that anybody can see exact token value (if they have access to browser session storage of course) and maybe abuse it.
Is this real threat? Is there any workaround that is safer? Thanks, Darko -- You received this message because you are subscribed to the Google Groups "AngularJS" group. To unsubscribe from this group and stop receiving emails from it, send an email to angular+unsubscr...@googlegroups.com. To post to this group, send email to angular@googlegroups.com. Visit this group at http://groups.google.com/group/angular. For more options, visit https://groups.google.com/d/optout.
