I'm developing react native application and I have doubts about some security. what is the best way to store user auth token react-native-keychain or account manager?
Thanks
Asked
Active
Viewed 1,566 times
2 Answers
2
According to me Asyncstorage is safe place to store token because your storage file is created in internal storage inside your application package name folder and internally AsyncStorage uses sharedPreference with private context So no other application can access your application's storage file until and unless the phone is not rooted and not jailbreaked. However, User have physical access to the device so he/she can extract files by connecting the phone to the laptop and see document directory so for that what you can do is encrypt your sensitive data.
react-native-keychain is good to handle your use-case. It uses facebook-conceal encryption algorithm internally.
Happy Coding :)
Codesingh
- 3,316
- 1
- 11
- 18
0
There is another package react-native-sensitive-info,which has the same easy api with localstorage.
Devin Gong
- 124
- 6