1 min readApr 9, 2018
Have a server side validation and set session cookies in the response header when the otp is correct.
Written by Avinash Jain (@logicbomb)
Security Engineer @Microsoft | DevSecOps | Speaker | Breaking stuff to learn | Featured in Forbes, BBC| Acknowledged by Google, NASA, Yahoo, UN etc