Every way to store data in the browser
The browser can store data now. Like a lot of data. 5/6/2025Why
I think you should store data in your user’s browser. Or at least consider it.
Many web apps today introduce latency, errors, and slow interactions in order to pass tiny blobs of JSON back and forth from a server. These packets are usually in the 10s of kilobytes.
The browser can store gigabytes of data.
Does relying on the network + server make sense for every part of your app? Think about the experiences you could build if your app’s data was already in your browser, no latency.
You might be thinking, “this just sounds like another caching layer”, and you would be right! Good job. It might sound difficult to manage, but come on, how hard can cache invalidation be?
A note about data durability
The data you store in a browser is ultimately in your users’ hands and, like anything you ship to a user, there’s a chance they are going to screw it up. At any time, they can hit the “Clear browser storage” button which will wipe out most of the storage mechanisms I mention below.
This means that browser storage should usually enhance the user experience rather than create it. Storing data in the browser can be viewed as a kind of progressive enhancement.
You can tell the browser your data is important by opting in to persistent mode, but this only prevents the browser from automatically evicting your data if the storage quota is getting low. The user can still remove data at any time.
The Safari problem
Thanks to Kent C. Dodds for calling this to my attention.
Safari in particular has a reputation of ditching your stored data at seemingly random intervals. This is due to their “Intelligent Tracking Prevention” feature. If a user hasn’t interacted with a given site for seven days, Safari will automatically clear most forms of browser storage used by that site. Each user interaction will reset this clock, though, so regular users of your app shouldn’t be affected.
In any case, do not depend on your data being accessible 100% of the time and opt for storing data that can be easily replaced.
For the purposes of this post, I'm defining storing data as any means of persisting some information in the browser through a full page reload.
Cookies
| Description | Bits of data often set by the server in a Set-Cookie header. You can set cookies in the browser using the (gross) document.cookie API. Only accessible from browser JavaScript if HttpOnly property is not set. |
| Limits | ~4kb per cookie, 100s of cookies per domain. |
| API Type | Synchronous |
| Removed with “Clear browser storage” | Yes |
| Documentation | MDN |
document.cookie = "has_visited=true"localStorage
| Description | Key/value store where keys and values must always be strings. Persists through closing/opening tabs. |
| Limits | ~5mb |
| API Type | Synchronous |
| Removed with “Clear browser storage” | Yes |
| Documentation | MDN |
localStorage.setItem(
"prefs",
JSON.stringify({ theme: "dark", notifications: true })
)
let preferences = JSON.parse(localStorage.getItem("prefs"))sessionStorage
| Description | Mostly the same as localStorage but deleted when the tab/window is closed. |
| Limits | ~5mb |
| API Type | Synchronous |
| Removed with “Clear browser storage” | Yes |
| Documentation | MDN |
let text = document.querySelector("textarea")
sessionStorage.setItem("saved-message", text.value)IndexedDB
| Description | Database-like storage that supports indexes, transactions, and cursors. Beware of the raw API, probably use idb. |
| Limits | Adheres to browser storage quotas |
| API Type | Async |
| Removed with “Clear browser storage” | Yes |
| Documentation | MDN |
import { openDB } from "idb"
let db = await openDB("my-app", 1, {
upgrade(db) {
db.createObjectStore("notes")
},
})
let myNotes = await db.getAll("notes")Cache API
| Description | Key/value store where the key is either a Request or a URL string, and the value is a Response. Often used in service workers but available in the main thread as well. |
| Limits | Adheres to browser storage quotas |
| API Type | Async |
| Removed with “Clear browser storage” | Yes |
| Documentation | MDN |
const cache = await caches.open("fetches")
async function getUrl(url, opts = {}) {
let match = await cache.match(url)
if (match) return match
let response = await fetch(url, opts)
await cache.put(url, response.clone())
return response
}Origin Private File System
| Description | Full-blown file system scoped by origin. Optimized for performance and can even run SQLite. |
| Limits | Adheres to browser storage quotas |
| API Type | Both synchronous and async |
| Removed with “Clear browser storage” | No |
| Documentation | MDN |
let root = navigator.storage.getDirectory()
let recipesHandle = await root.getDirectoryHandle("recipes", { create: true })
for await (let [name, handle] of recipesHandle) {
if (handle.kind === "file") {
let file = await handle.getFile()
let contents = await file.text()
console.log(name, contents)
}
}Browser storage quotas
The following quotas apply only to the Cache API, IndexedDB and the Origin Private File System.
- Firefox: 10% of disk, 50% in persistent mode
- Chromium: 50% of disk in either mode
- Safari: 20% of disk, 60% if saved to Home Screen or Dock
- no more than 80% across all origins
- Will throw
QuotaExceededErrorif there is insufficient space when performing a storage operation - StorageManager API
await navigator.storage.estimate()returns a best estimate of how much total storage is available
Sundry
- Incognito browsers typically delete all storage when the session ends
- Safari uses a usage-based eviction when using cross-site tracking prevention, 7 days with no activity = all data deleted besides server-set cookies
- Browsers hold a least recently used (LRU) cache by origin and use it to evict data when space is low
- All data for a given origin is deleted at once when evicted to avoid consistency issues
See you in the devtools “Application” tab 🫡