Improving Node REST API Part #4 - JWTs with Cookies

In this video we'll learn how to use JWTs with cookies. So far we've been storing JWTs into the local storage which has some security issues because JavaScript can read the local storage's content - and that made us vulnerable to XSS attack. When we store JWTs into cookies instead (and we use httpOnly flag) we disallow JavaScript from accessing the cookie altogether and XSS attack is no longer possible. In this series we'll work on improving our existing Node REST API project that we have worked on in the "API Authentication with Node" playlist. Playlist link: https://www.youtube.com/watch?v=zx6jnaLuB9Q&list=PLSpJkDDmpFZ7GowbJE-mvX09zY9zfYatI GitHub repo: https://github.com/eXtremeXR/APIAuthenticationWithNode ===================================================== Subscribe to CodeWorkr: http://www.youtube.com/c/codeworkr?sub_confirmation=1 If you like my content and would like to help me out, the easiest/free way of doing so is to just spread the word/links around and help others find my channel. If you'd like to support me "more directly", however, you can find the ways to do so below. Ways you could support me: 1) Just spread the word/share links 2) Paypal: www.paypal.me/CodeWorkr 3) BTC: 1NSawc7dovv2Wf11R87Yj8fhpGA5wuBKTF 4) Amazon: www.amazon.com/shop/codeworkr