If I have access token which has short life and refresh token has long life how to save the refresh token I safe place? I think localstorage and cookies are not safe?
