Setting and storing session ID securely in Static sites

I’m using API Form Response data to set session id for users to keep them logged in. I read that storing it in HTTP Only cookie will help prevent third party scripts on my page from reading this information.

However i also read that this is only true if javascript is not used to set or read this cookie.
I’m using the ‘cookie.set’ action to set the cookie from response data of API Form. Does this mean I’m using javascript behind the scenes to set the cookie and reducing the security of the cookie.

What really is the best way and place in Wappler Static sites to store sensitive data like session id ?

I just a beginner to website development and reading about the many security problems is confusing. If anyone could please tell me what is the best i could do within Wappler for my use case, it would be a big help. Thanks

Community Page
Last updated: