Auth0 Home Blog Docs

Protection against cookie theft?


#1

Hello,

i have a question about security related to cookie theft… We are evaluating Auth0 and its SSO functionality and i have done a simple test by importing cookies from one browser into another and was disappointed that it was instantly logged in. We are using the Implicit Grant flow with Silenth Authentication for SSO. Have i missed something or can someone provide some additional informations how to best implement protections against that case ? Any way to do it with the hooks ?

Thanks alot!