when calling the server interface, you need to pass in the token, returned by the server when logging in. Should there be a client or a server when the token is obtained? will there be security problems if I have a client, such as cookie or localStorage? is there any solution?
the front end is developed with vue, and the back end is developed with java, and the token mechanism of jwt