Why and how to cookies instead of localStorage for our JWT in Svelte

If your SvelteKit (or any frontend) app can, it should probably use httponly secure Cookies to store your JWT/session information rather than using localStorage. It's more secure against XSS. In this episode, I show you the small changes required to make that work in Svelte.
🤯 Support on Patreon
  • https://www.patreon.com/davidwparker

⏱️ Timestamps:
  • 00:00 - Introduction
  • 00:45 - Demo
  • 01:55 - api.js changes
  • 02:25 - svelte file changes

💌 Newsletter:
  • https://www.programmingtil.com/

🪐Elsewhere:
  • Twitter: https://twitter.com/davidwparker
  • Twitter: https://twitter.com/programmingtil
  • GitHub: https://github.com/davidwparker

💭Concepts:
  • Cookies vs LocalStorage for JWTs

📚Resources:
  • https://github.com/davidwparker/programmingtil-svelte/tree/ep16

🎬 Subscribe!
  • http://bit.ly/subdavidwparker

My name is David W Parker and I’m creating and publishing videos on ProgrammingTIL to help teach anyone and everyone who wants to code. I’m a huge fan of Ruby on Rails, Svelte, TailwindCSS, and WebGL. I’ve used React a lot in the past, as well as some Vue and AngularJS. I’ve done some professional Python and Django. I like to create real applications and my tutorials will walk you through how to build something real from beginning-to-end.

svelte #sveltekit

© programmingtil.com