Skip to Content (Press Enter)
OutSystems.com
Personal Edition
Community
Support
Training
Training
Online Training
Developer Schools
Boot Camps
Certifications
Tech Talks
Documentation
Documentation
Overview
ODC
O11
Forums
Forge
Get Involved
Get Involved
Jobs
Ideas
Members
Mentorship
User Groups
Platform
Platform
ODC
O11
Search in OutSystems
Log in
Get Started
Back to Forums
Robert Chanphakeo
4
Views
1
Comments
[oAuth Connectors] oAuth_Google: security risk, storing oauth refresh token in cookie
Question
Forge
oAuth Connectors (O11)
Forge asset by
André Vieira
I had a look at the code for oAuth_Google
The oauth refresh token is stored in a web cookie, a more secured place to store the refresh token value is in the user session or in the database.
Robbie Nati
Has Robert's suggestion been investigated and thus implemented??
Community Guidelines
Be kind and respectful, give credit to the original source of content, and search for duplicates before posting.
See the full guidelines
Loading...