Tag
2 articles
XSS
Every article on the AldeaCode blog tagged with this topic.
Security
Where to Store JWT Tokens: Cookies vs localStorage
Where to store a JWT in 2026: HttpOnly cookies, readable sidecars, CSRF and XSS tradeoffs. The pragmatic JWT cookie pattern, with code.
Read article → Security
Content Security Policy (CSP): Beginner Guide for 2026
Content Security Policy header explained for beginners. Stop XSS attacks with strict-dynamic, nonces, and the directives that actually matter.
Read article →