As to secure, there's a lot of debate around SPA logins. JWTs in local/session storage opens you up to XSS. httponly cookies are inaccessible to JS, but they ...
確定! 回上一頁