This is part 3 of my browser storage series, so please take a look at part 1 and 2 if you have not seen them yet!
As covered earlier in the serie...
For further actions, you may consider blocking this person and/or reporting abuse
Beware that JWT in local storage is accessible to all websites:
Please Stop Using Local Storage
Randall Degges ・ Jan 30 '18 ・ 11 min read
Yes, please don't ever store sensitive information in local storage, as it's not secure! Local storage is domain specific, so one website's data is not accessible by default to other sites. Local storage is an amazing tool for sites to keep track of if a user is currently logged in.
I am concerning that JWT can actually be decoded without a secret key (although cannot verify). So, it is really safe, esp for public computers?
Don't store sensitive information in local storage, since the data isn't secure! Many sites have a button, "remember me on this pc" to indicate that it is a personal computer.