Hello,
I'm developing a webapp that needs to make a request to the Twitter API to list all its "Followings" and for that I need to use the Access Token and Access Token Secret (you can see all of the webapp code here )
Now my question is where and how to safely store these tokens?
1st - I use MongoDB to store some necessary user data and could store the tokens as well.
2nd - Could also store in an Environment Variable on the server.
But I do not think either of these 2 options is safe, not without some kind of encryption.
Someone can give me a tip, it helps anything so I can continue to develop the project.
Thank you in advance. Something that needs to be changed or something that is confusing tells me that I change or clarify.