|Assignee:||Pavan Rikhi||% Done:|
|Target version:||v1.0.0 - Deployment|
Storing the api key in localstorage isn't too safe since other scripts can inspect the values. We should store it in cookies instead. We'll have to show the cookie warning for EU countries, but we'd have to anyways since google analytics is storing cookies for us already.
There is a
servant-auth-cookie package we can use, along with a short guide on setting everything up: