© 2026 Hedgehog Software, LLC

Twitter GitHub Discord

More

Communities Docs About Terms Privacy

Is the JWT stored in local storage? - Supabase

Supabase•4y ago•

1 reply

Is the JWT stored in local storage?

Hey, it looks to me (just investigated js library) that under the hood for Auth, it's authenticating and then storing that jwt returned in local storage for its entirety until it's invalid and you need to login again.

Is this a correct interpretation? If so, I thought it wasn't secure to do so as it creates XSS risks? Thanks in advance, just learning!

Supabase banner

Supabase gives you the tools, documentation, and community that makes managing databases, authentication, and backend infrastructure a lot less overwhelming.

46,176Members

Resources

Similar Threads

Was this page helpful?

Recent Announcements

Similar Threads

Auth token is stored in local storage?

SSupabase / help-and-questions

Why are Supabase Access Tokens stored in local Storage?

SSupabase / help-and-questions

JWT authenticated storage example

SSupabase / help-and-questions

Local Storage Questions

SSupabase / help-and-questions