I\'ve just added authentication to my add-in and I store credentials in a cookie (not a session cookie and the cookie has an expiration date that is well into the future).
