display mode (grid vs. list) should be remembered

sebalis

Hi,

whenever I log into my favourite Cryptpad instance, the first thing I wish to do is change the view mode from grid to list. Could this please be stored in the user settings? I would suggest that the stored setting should always be kept in sync with the current setting, so I am not calling for a new GUI element in the settings.

(If you want to respond by saying that this is stored in a cookie – I haven’t checked – then I would have to reply that that won’t help me. My browser is in “always private” mode so cookies are forgotten as soon as I close the browser. I would assume that other Cryptpad are similarly careful.)

yozlet

The preference is stored in a cookie-like way using the browser's localstorage system. As you might guess, this is not stored in a private browser mode. It makes me wonder why CryptPad seems to store so much info in localstorage, such as your username, login token, timestamp of last visit, premium status, and a ton of CSS. Also, how easy it would be to compromise a user's CryptPad account on getting access to that localstorage, assuming that the user didn't previously explicitly log out.