Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
R
R
Ross Alex2020-12-10 15:08:17
OAuth
Ross Alex, 2020-12-10 15:08:17

How to store oAuth2 token without user pin?

Greetings!

There are 2 tokens from oAuth2: access and refresh. You can make AES with a salt in the form of user-pin 4 digits and put it in localStorage / IndexedDB, and then ask the user for a pin as soon as decryption is needed (if there is no decrypted access in memory). But the question is: how to protect the token if there is no pin? Request salt from the server?

Thanks for the advice

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

0 answer(s)
Similar questions
C
cybervito212014-11-10 14:27:50
Are there analogues of OAuth 2.0? 1Reply
P
Pesetsu2019-04-09 09:43:40
OAuth2 authorization, getting a token, what to do? 1Reply
L
Lane202014-11-16 11:42:04
How to pass OAuth authorization through the Dropbox API using a token (PHP)? 1Reply
A
Artem2014-11-17 10:49:46
OAuth server, should I store user access_tokens? 1Reply
D
dizlv2014-11-28 20:04:36
How to implement user login via OAuth2.0 in JS application to access REST API? 2Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question