Where is the refresh token stored in an Android React Native application? Is it stored securely and/or encrypted?

BSK · June 5, 2024, 3:17pm

I’m trying to figure out where is the refresh token stored in an Android React Native application, and if it is stored securely and/or encrypted.

Also if it is not stored securely, is there any way to change how/where it is stored in order to store it in an encrypted storage?

ty.frith · June 5, 2024, 5:10pm

Hey there @BSK !

The CredentialsManager class is designed specifically for secure token storage, including refresh tokens:

Topic		Replies	Views
Where/how to store refresh token for React Native mobile app? Get Help	11	14837	October 31, 2019
Security Concern: Auth Data and Encryption Keys Stored Together in SharedPreferences in React Native SDK Get Help security-question-concern , security-compliance	2	134	August 25, 2025
React-native-auth0 embedded social login not returning refresh token Get Help social-connections , refresh-tokens , react-native-auth0	9	10517	December 2, 2018
How refreshtoken works? where it is stored? Get Help jwt , auth0 , login	4	1854	November 21, 2022
Id token and refresh token from in react app Get Help	3	5086	June 2, 2021