Accessing Local Storage/ Session Storage in custom components

tim · September 14, 2020, 4:17pm

Hey @ash2shukla - @andfanilo is correct, we don’t currently support this. The issue is that we omit the allow-same-origin sandbox flag on the component iframe for security reasons - and unfortunately, the localStorage API will not work without that flag.

As @andfanilo mentioned, we’re evaluating the various ways we could support this sandbox flag without opening a security hole – but there’s no timeline for that, currently.

There is a workaround, however: it’s sort of a pain, but if you’re able to use components.iframe - that is, if you can host your component externally, and it doesn’t require bi-directional communication with Streamlit - then your component’s iframe will have the allow-same-origin flag. (I realize this is not an acceptable workaround for many use cases, but I’m putting it out there in case it would work for you.)

Topic		Replies	Views
Accessing localstorage through my custom streamlit component Custom Components debugging	2	268	March 10, 2025
Streamlit Next.js Component, Auth0 Authentication, Bi-Directional Messaging & Serverless APIs Custom Components	42	16978	November 2, 2024
Browser local and session storage for streamlit Custom Components	13	5937	October 7, 2024
New component: Login authentication (Oauth) and localStorage access in Streamlit, synchronous communication Custom Components authentication	5	2978	March 22, 2023
Are custom components unsafe (iframe with allow-scripts and allow-same-origin)? Custom Components	1	2452	February 6, 2023

Accessing Local Storage/ Session Storage in custom components

Related topics

Hello there 👋🏻

Cookie settings

Strictly necessary cookies

Performance cookies

Functional cookies

Targeting cookies