Skip to content

Alternatives to LocalStorage for Storing Authentication Data #8324

New issue
New issue
Open
Open
Alternatives to LocalStorage for Storing Authentication Data#8324
Labels
Needs: Attention 👋Awaiting response from the MSAL.js teamfeature-unconfirmedmsal-angularRelated to @azure/msal-angular packagemsal-browserRelated to msal-browser packagepublic-clientIssues regarding PublicClientApplicationsquestionCustomer is asking for a clarification, use case or information.
@ahmadmujeeb33

Description

@ahmadmujeeb33
ahmadmujeeb33
opened on Feb 12, 2026

Core Library

MSAL.js (@azure/msal-browser)

Wrapper Library

MSAL Angular (@azure/msal-angular)

Public or Confidential Client?

Public

Description

If I want to enable SSO across browser tabs, is there an alternative to using localStorage? I’ve read that storing sensitive information like access tokens or ID tokens in localStorage can pose security risks, even though MSAL allows it.

My goal is for a user to log in once and remain authenticated when they open a new tab, but without relying on localStorage. Are there more secure approaches to achieve this?

Metadata

Metadata

Assignees

No one assigned

    Labels

    Needs: Attention 👋Awaiting response from the MSAL.js teamfeature-unconfirmedmsal-angularRelated to @azure/msal-angular packagemsal-browserRelated to msal-browser packagepublic-clientIssues regarding PublicClientApplicationsquestionCustomer is asking for a clarification, use case or information.

    Type

    No type

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions