Websites: Store the access_token in memory, the refresh_token is automatically included in an httpOnly and Secure cookie with domain cotter.app that is automatically included when requesting to refresh token. Learn more on how to store JWT tokens securely.β
Cotter's SDK generally handles token storage in your app.
SDK Support
Some of our SDKs handles storing the tokens for you: