I go over how to perform an XSS attack and discuss how you're screwed no matter where you store your access token. Therefore, you might not need to worry about XSS when you decide whether to store your token in local storage.


​
----
Follow me online: https://voidpet.com/benawad
#benawad