问题
I am using Angular 2 and Typescript and wanted to save the user object like a global variable so it hasn't to be retrieved multiple times. I found the session storage and now save the user object there.
Do you think it is good practice to store it there or is the data too sensitve? If so, what other kind of cache could I use?
Here is the code I use right now:
user.service.ts:
getProfile() {
let cached: any;
if (cached = sessionStorage.getItem(this._baseUrl)) {
return Observable.of(JSON.parse(cached));
} else {
return this.http.get(this._baseUrl).map((response: Response) => {
sessionStorage.setItem(this._baseUrl, response.text());
return response.json();
});
}
}
The getProfile() is called in the app.component when ngOnInit(). The user object is also needed in other components of the application.
回答1:
Its ok to have secure/sensitive data in session storage.
As session storage only available for current table and domain...
If user check same session storage data in another window tab then it will not be there....so its secure storage....
If want to know more, please have look on sessionStorage
回答2:
You could either use sessionStorage or use a service.
Your interface:
export interface ISession {
session:Object
}
Your actual service class:
import {Injectable} from '@angular/core';
@Injectable()
export class SessionService implements ISession {
private _session: session
constructor(){
}
set session(value){
this._session = value;
}
get session(){
return this._session
}
}
Now you can inject this SessionService class in other class constructors and use it.
来源:https://stackoverflow.com/questions/41564204/save-user-object-in-session-storage