A
A
ag0332020-02-17 19:31:29
OAuth
ag033, 2020-02-17 19:31:29

Where and how to store client_secret?

There is a SPA application written in Nuxt. An API on Laravel is deployed under it. It's time to authorize the administrator and protect requests on behalf of the administrator. The choice fell on laravel passport. And the question arose, is it possible to store the secret key on the client side to get a bunch of tokens? If not, how to organize it on the backend. The option described in the documentation and an additional request from the route was tested, but I want to know if there is any other solution.

Answer the question

In order to leave comments, you need to log in

2 answer(s)
A
Anton, 2020-02-17
Reytarovsky @Antonchik

The normal option is a separate request from the back and transferring the access token to the front.
But you can also try personal access

A
Alex, 2020-02-17
@Kozack

It can be stored in a cookie. Just be sure to read up on how to do it safely.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question