SPA

Browser-Based OAuth Client: The architecture you shouldn't be using

Of all possible browser-based OAuth architectures, the Browser-Based OAuth Client (BBOC) pattern is the least secure. Despite this, BBOC remains the most...

Nathan Contino

Kim Maida

June 3, 2026

Education

Backend For Frontend Authentication in FusionAuth

This article discusses the dangers of storing OAuth tokens in the browser or on a client-side device – a common pattern in serverless architectures like...

Dan Moore

June 30, 2025

Showing 1 to 2 of 2 results

Subscribe to The FusionAuth Newsletter

Get updates on techniques, technical guides, and the latest product innovations coming from FusionAuth.