Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- #Should the client or the server take more security precautions?#
- Both should take plenty of security precautions, but the client should take
- more as it is used to access the server.
- #What's the difference between local storage and session storage?#
- Local storage saves data for a specific domain and keeps it available
- for any new tabs or windows in that browser viewing that domain.
- Session storage is the same as local storage EXCEPT that the data doesn't
- persist outside of the session/tab. After the session the data is gone,
- thus providing more security than local storage.
- #What problem does a JWT expiry time solve?#
- A user cannot be signed in indefinitely, thus making it harder for malicious
- parties to use JWT they are able to find.
- #Is a refresh endpoint protected or public?#
- Protected
- #What would happen if a refreshed JWT was requested with a JWT that had already expired?#
- It shouldn't go through
- #What does it mean to queue a callback?#
- To have a function called after a certain amount of time
- #What does the clearTimeout function do and what argument do you pass into it?#
- It takes in a setTimeout function reference
- It clears the timeout which has been set by the setTimeout function
- #For which of the following events should a refresh request be queued after?#
- A successful user registration request
- A successful login request **
- A page load
- A successful API request to a protected endpoint for posting a comment
- A successful refresh request
- A push state navigation event
- A user logs out
- #What is OIDC?#
- Industry standard pro protocol called OpenID Connect
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement