solid-oidc icon indicating copy to clipboard operation
solid-oidc copied to clipboard

Published 20 hours ago verified publisher icon solid

Solid OIDC Security Consideration Client Secrets

Open csarven opened this issue 2 years ago • 0 comments

In #security-client-secrets:

Client secrets SHOULD NOT be stored in browser local storage.

Perhaps "browser or application"? Clarify what's intended with "local" - specific to localStorage or sessionStorage or using it generally?

csarven avatar Apr 19 '22 01:04 csarven