Data Security of Vue website

problem description

Vue project

the user requests that each interface carry a key.
request login interface first, return token and userInfo after success, and then save it.
each subsequent request needs to carry token. Even some parameters of many interfaces are some fields of user userInfo
needs to implement the intermediate attacker Eve cannot steal data. Or there is no way to simulate the identity of Alice to communicate with Bob.

the environmental background of the problems and what methods you have tried

Anti-crawler strategy studied by myself: ider" rel=" nofollow noreferrer "> https://github.com/FantasticL.

what result do you expect? What is the error message actually seen?

how to save key, token, userInfo? Need to implement the function of remembering passwords, so whether this information needs to be written into LocalStorage or cookie. Do you want to encrypt things written like this? There is no reasonable logic in the whole. I hope you can give me some suggestions

Data-security token axios vue.js php

Jun.13,2021

the system I made also uses token for single sign-on
I am stored in sessionStorage

websites can be upgraded to https, to improve security

put LocalStorage on it, go https , what's the point of encrypting that thing?

Previous: The error, enable gradle 'offline mode' and sync project was reported as soon as the android project was opened.

Next: What permissions do tomcat users need? just give it tomcat directory permissions, okay?