stackoom
  简体   繁体   中英

Twitter Access Token Storage

 原文  2012-07-19 16:13:18       c#/ security/ twitter/ oauth

Question

This question has been asked many times but I don't find any clear answer about it.
I'm building an App with twitter access.
Of course, I get the two tokens but as I don't want to ask the user every time to authorize the App I need to store them.
But where ? Cookie, Session, DB ??
Can somebody help me and tell me the pros and cons with those methods.

1 answers

solution1
 2 ACCPTED  2012-07-19 17:35:24

How long do you want to keep the access for? If it is just a single interaction, then keeping it in a session should be fine. If you want to use the cookies over a longer period of time with multiple interactions, then storing it in a DB is probably much better.

I would advise against storing them in cookies. If the user logs in from another browser or another machine, they would be prompted to authorize again. And then the tokens stored in cookies in the original browser wouldn't work. So it would be a confusing experience for the user.

暂无
暂无

The technical post webpages of this site follow the CC BY-SA 4.0 protocol. If you need to reprint, please indicate the site URL or the original address.Any question please contact:yoyou2525@163.com.

Related Question Verify access token with Twitter Twitter api, failed to get access_token by 2/oauth/token with PKCE How to access Cloud Storage for Firebase if I already have access token? How to send request to Twitter api using access token in ASP.NET core? Posting info to Twitter with a known username / pass and the Oauth token without having to grant access Read User Info (User Id and Name) from access Token. (Facebook, Twitter, Google, Microsoft) Understanding storage of OAuth token Authentication token storage Why can't my app access by blob storage using this SAS token? How can i determine if a SAS Token has already expired for Azure Blob Storage Container Access?
Related Tags
 
粤ICP备18138465号  © 2020-2024 STACKOOM.COM