Storing and Removing Tokens
OAuth Tokens should be stored securely in the client.
- Websites: Store the
access_tokenin memory, the
refresh_tokenis automatically included in an
Securecookie with domain
cotter.appthat is automatically included when requesting to refresh token. Learn more on how to store JWT tokens securely.
Cotter's SDK generally handles token storage in your app.
Some of our SDKs handles storing the tokens for you: