2021-01-01 UTC
# [Raphael_Luckom] I have some kinda basic-level questions about authn after looking around a little bit. First, I'm looking at the differences between tokens and cookies for session storage. Am I correct to think that cookies are more "indieweb" most of the time? It seems like cookies are better protected by the browser (but you need to watch out for csrf).