API auth with a Chrome Extension (third party)

I'm building a Chrome extension which makes Auth calls to my app's API.

What this extension does is to access the local storage to get the

wasp:sessionId

wasp:sessionId

and with it make the API calls.

The problem I have is that I need to have the app page open to access the

wasp:sessionId

wasp:sessionId

.

Isn't it unsafe to store this sessionId in the extension? For that reason before making a call, I access the value in local storage.

Maybe this approach is not the right one.

Maybe this is not related with Wasp

Wasp•12mo ago•

13 replies

NEROX

API auth with a Chrome Extension (third party)

I'm building a Chrome extension which makes Auth calls to my app's API.

What this extension does is to access the local storage to get the

wasp:sessionId

wasp:sessionId

and with it make the API calls.

The problem I have is that I need to have the app page open to access the

wasp:sessionId

wasp:sessionId

Continue the conversation

Join the Discord to ask follow-up questions and connect with the community

Wasp

Rails-like framework for React, Node.js and Prisma. Build your app in a day and deploy it with a single CLI command.

4,603 Members

Join

API auth with a Chrome Extension (third party)

API auth with a Chrome Extension (third party)

Continue the conversation

Wasp

Continue the conversation

Wasp

Similar Threads