I'm looking for opinions on cookies or alternatives to. I have been reading of some insecurities and would like to be sure I'm gearing myself toward the most secure methodology.
For instance, is it best to store user login information in the database and access this via a random generated key stored in the cookie?
I'm super new in general, I can't seem to find any definitive answers here- is there somewhere I can read up on this?
