DEV Community

Discussion on: Secure authentication in Nuxt SPA with Laravel as back-end

stefant123 profile image
StefanT123 Author

As the refresh_token is set to be HttpOnly cookie, you can't access it or see it in the browser cookies. The refresh_token is used only to renew the access_token when it expires.