feat(web): avoid persisting access tokens and PII in localStorage

### User Story / Goal

As a user, I want my session information to be stored securely so that my personal information is not at risk.

### Acceptance Criteria

- [ ] Access tokens (JWTs) are not stored in localStorage.
- [ ] User's email or other personally identifiable information (PII) is not stored in localStorage.
- [ ] Session management is handled through HttpOnly secure cookies or by keeping tokens in memory.
- [ ] The application remains functional for authenticated users.

### Technical Breakdown (Optional)

The current implementation stores JWTs and user information in localStorage, which is vulnerable to XSS attacks.

### Designs / Mockups (Optional)

_No response_

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

feat(web): avoid persisting access tokens and PII in localStorage #39

User Story / Goal

Acceptance Criteria

Technical Breakdown (Optional)

Designs / Mockups (Optional)

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

feat(web): avoid persisting access tokens and PII in localStorage #39

Description

User Story / Goal

Acceptance Criteria

Technical Breakdown (Optional)

Designs / Mockups (Optional)

Metadata

Metadata

Assignees

Labels

Projects

Milestone

Relationships

Development

Issue actions