Tag
2 articles
Web Security
Every article on the AldeaCode blog tagged with this topic.
Security
Where to Store JWT Tokens: Cookies vs localStorage
Where to store a JWT in 2026: HttpOnly cookies, readable sidecars, CSRF and XSS tradeoffs. The pragmatic JWT cookie pattern, with code.
Read article → Developer
How to Decode a JWT: Header, Payload, Signature
Decode a JWT and read the header, payload and signature in your browser. No upload, no token leak. A 30 second routine for debugging JWT tokens.
Read article →