i'm trying temporarily store nonce/timestamp info prevent man-in-the-middle attacks when performing oauth authentication. there advantage storing info in database on using $_session? feeling $_session faster. however, i'm not sure if there's security issue i'm missing.
Comments
Post a Comment