Is it possible to store the oauth token in session but only on the server side?
Totally noob question here, but I want for the exercice to create an user interface for Spotify and so I've got a lot of call to the API of Spotify to make. And everytime I need the oauth token. But I don't want this to be accessible on the frontend side, just on the backend side. So storing it in the session doesn't look like the right way because it means it would be theoretically available on the client too? For now, I'm just doing everytime a request to the account database, but it looks clumsy as hell.
What would be the proper way to do this?
Thanks!
0 Replies