|
|
|
|
|
|
by thdrdt
2401 days ago
|
|
|
Imho this is a useless safety 'feature'. It only saves you from a mitm-attack and even then you hope that the mitm did not see your refresh token. The moment you store data with Javascript it will be visible for any Javascript. |
|
|