Search code examples
angulartypescriptstoragesession-storage

Save user object in Session Storage


I am using Angular 2 and Typescript and wanted to save the user object like a global variable so it hasn't to be retrieved multiple times. I found the session storage and now save the user object there.

Do you think it is good practice to store it there or is the data too sensitve? If so, what other kind of cache could I use?

Here is the code I use right now:

user.service.ts:

getProfile() {
    let cached: any;
    if (cached = sessionStorage.getItem(this._baseUrl)) {
        return Observable.of(JSON.parse(cached));
    } else {
        return this.http.get(this._baseUrl).map((response: Response) => {
            sessionStorage.setItem(this._baseUrl, response.text());
            return response.json();
        });
    }
}

The getProfile() is called in the app.component when ngOnInit(). The user object is also needed in other components of the application.


Solution

  • Its ok to have secure/sensitive data in session storage.

    As session storage only available for current table and domain...

    If user check same session storage data in another window tab then it will not be there....so its secure storage....

    If want to know more, please have look on sessionStorage